Apple Macos Monterey vulnerabilities

CVE-2022-46706 [HIGH] CVE-2022-46706: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-46706 Component: Intel Graphics Driver Impact: An application may be able to execute arbitrary code with kernel privileges Description: A type confusion issue was addressed with improved state handling.

CVE-2021-4187 [HIGH] CVE-2021-4187: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2021-4187 Component: CVE-2021-4187

CVE-2022-22609 [HIGH] CVE-2022-22609: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22609 Component: Preferences Impact: A malicious application may be able to read other applications' settings Description: The issue was addressed with additional permissions checks.

CVE-2021-4166 [HIGH] CVE-2021-4166: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2021-4166 Component: CVE-2021-4166

CVE-2022-22625 [HIGH] CVE-2022-22625: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22625 Component: AppleScript Impact: Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2022-22663 [MEDIUM] CVE-2022-22663: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22663 Component: CoreTypes Impact: A malicious application may bypass Gatekeeper checks Description: This issue was addressed with improved checks to prevent unauthorized actions.

CVE-2021-36976 [MEDIUM] CVE-2021-36976: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2021-36976 Component: CVE-2021-36976

CVE-2022-22600 [MEDIUM] CVE-2022-22600: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22600 Component: Sandbox Impact: A malicious application may be able to bypass certain Privacy preferences Description: The issue was addressed with improved permissions logic.

CVE-2022-26691 [MEDIUM] CVE-2022-26691: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-26691 Component: CUPS Impact: An application may be able to gain elevated privileges Description: A logic issue was addressed with improved state management.

CVE-2022-22638 [MEDIUM] CVE-2022-22638: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22638 Component: Kernel Impact: An attacker in a privileged position may be able to perform a denial of service attack Description: A null pointer dereference was addressed with improved validation.

CVE-2022-26690 [MEDIUM] CVE-2022-26690: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-26690 Component: PackageKit Impact: A malicious application may be able to modify protected parts of the file system Description: A race condition was addressed with additional validation.

CVE-2022-22655 [MEDIUM] CVE-2022-22655: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22655 Component: Sandbox Impact: An app may be able to leak sensitive user information Description: An access issue was addressed with improvements to the sandbox.

CVE-2022-22582 [MEDIUM] CVE-2022-22582: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22582 Component: Wi-Fi Impact: A malicious application may be able to leak sensitive user information Description: A logic issue was addressed with improved restrictions.

CVE-2022-22647 [MEDIUM] CVE-2022-22647: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22647 Component: Login Window Impact: A person with access to a Mac may be able to bypass Login Window Description: This issue was addressed with improved checks.

CVE-2022-22621 [MEDIUM] CVE-2022-22621: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22621 Component: UIKit Impact: A person with physical access to an iOS device may be able to see sensitive information via keyboard suggestions Description: This issue was addressed with improved checks.

CVE-2021-4193 [MEDIUM] CVE-2021-4193: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2021-4193 Component: CVE-2021-4193

CVE-2021-22947 [MEDIUM] CVE-2021-22947: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2021-22947 Component: CVE-2021-22947

CVE-2022-26688 [MEDIUM] CVE-2022-26688: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-26688 Component: PackageKit Impact: A malicious app with root privileges may be able to modify the contents of system files Description: An issue in the handling of symlinks was addressed with improved validation.

CVE-2022-22648 [MEDIUM] CVE-2022-22648: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22648 Component: AppleScript Impact: An application may be able to read restricted memory Description: This issue was addressed with improved checks.

CVE-2022-22644 [MEDIUM] CVE-2022-22644: macOS Monterey 12.3 Apple Security Update: About the security content of macOS Monterey 12.3 Product: macOS Monterey Version: 12.3 CVE: CVE-2022-22644 Component: NSSpellChecker Impact: A malicious application may be able to access information about a user's contacts Description: A privacy issue existed in the handling of Contact cards. This was addressed with improved state management.