Apple Macos Monterey vulnerabilities

CVE-2022-32811 [HIGH] CVE-2022-32811: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32811 Component: Intel Graphics Driver Impact: An app may be able to execute arbitrary code with kernel privileges Description: A memory corruption vulnerability was addressed with improved locking.

CVE-2022-32793 [HIGH] CVE-2022-32793: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32793 Component: GPU Drivers Impact: An app may be able to disclose kernel memory Description: Multiple out-of-bounds write issues were addressed with improved bounds checking.

CVE-2022-32820 [HIGH] CVE-2022-32820: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32820 Component: Audio Impact: An app may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2022-32852 [HIGH] CVE-2022-32852: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32852 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2022-24070 [HIGH] CVE-2022-24070: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-24070 Component: Spotlight Impact: An app may be able to gain root privileges Description: This issue was addressed with improved checks.

CVE-2022-26981 [HIGH] CVE-2022-26981: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-26981 Component: Liblouis Impact: An app may cause unexpected app termination or arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2022-32853 [HIGH] CVE-2022-32853: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32853 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2022-48503 [HIGH] CVE-2022-48503: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-48503 Component: JavaScriptCore Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved bounds checks.

CVE-2022-32948 [HIGH] CVE-2022-32948: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32948 Impact: An app may be able to execute arbitrary code with kernel privileges Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2022-32851 [HIGH] CVE-2022-32851: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32851 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory Description: An out-of-bounds read issue was addressed with improved input validation.

CVE-2022-42805 [HIGH] CVE-2022-42805: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-42805 Impact: An app may be able to execute arbitrary code with kernel privileges Description: An integer overflow was addressed with improved input validation.

CVE-2022-32812 [HIGH] CVE-2022-32812: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32812 Component: Intel Graphics Driver Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2022-32800 [MEDIUM] CVE-2022-32800: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32800 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed with improved checks.

CVE-2022-32841 [MEDIUM] CVE-2022-32841: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32841 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2022-32933 [MEDIUM] CVE-2022-32933: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32933 Component: WebKit Impact: A website may be able to track the websites a user visited in Safari private browsing mode Description: An information disclosure issue was addressed by removing the vulnerable code.

CVE-2022-32849 [MEDIUM] CVE-2022-32849: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32849 Component: GPU Drivers Impact: An app may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved validation.

CVE-2022-32816 [MEDIUM] CVE-2022-32816: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32816 Component: WebKit Impact: Visiting a website that frames malicious content may lead to UI spoofing Description: The issue was addressed with improved UI handling.

CVE-2022-32880 [MEDIUM] CVE-2022-32880: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32880 Component: AppleMobileFileIntegrity Impact: An app may be able to access user-sensitive data Description: This issue was addressed by enabling hardened runtime.

CVE-2022-32838 [MEDIUM] CVE-2022-32838: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32838 Component: PluginKit Impact: An app may be able to read arbitrary files Description: A logic issue was addressed with improved state management.

CVE-2022-32818 [MEDIUM] CVE-2022-32818: macOS Monterey 12.5 Apple Security Update: About the security content of macOS Monterey 12.5 Product: macOS Monterey Version: 12.5 CVE: CVE-2022-32818 Component: SMB Impact: An app may be able to leak sensitive kernel state Description: The issue was addressed with improved memory handling.