Apple Macos Ventura vulnerabilities

CVE-2022-48504 [MEDIUM] CVE-2022-48504: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-48504 Component: Find My Impact: An app may be able to access user-sensitive data Description: The issue was addressed with improved handling of caches.

CVE-2022-42825 [MEDIUM] CVE-2022-42825: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42825 Component: AppleMobileFileIntegrity Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed by removing additional entitlements.

CVE-2022-42814 [MEDIUM] CVE-2022-42814: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42814 Component: Directory Utility Impact: An app may be able to access user-sensitive data Description: A logic issue was addressed with improved checks.

CVE-2022-32858 [MEDIUM] CVE-2022-32858: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32858 Impact: An app may be able to leak sensitive kernel state Description: The issue was addressed with improved memory handling.

CVE-2022-32877 [MEDIUM] CVE-2022-32877: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32877 Component: AppleMobileFileIntegrity Impact: An app may be able to access user-sensitive data Description: A configuration issue was addressed with additional restrictions.

CVE-2022-42818 [MEDIUM] CVE-2022-42818: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42818 Component: Notes Impact: A user in a privileged network position may be able to track user activity Description: This issue was addressed with improved data protection.

CVE-2022-32931 [MEDIUM] CVE-2022-32931: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32931 Component: Sandbox Impact: An app with root privileges may be able to access private information Description: This issue was addressed with improved data protection.

CVE-2022-32938 [MEDIUM] CVE-2022-32938: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32938 Component: Shortcuts Impact: A shortcut may be able to check the existence of an arbitrary path on the file system Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2022-32895 [MEDIUM] CVE-2022-32895: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32895 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: A race condition was addressed with improved state handling.

CVE-2022-42799 [MEDIUM] CVE-2022-42799: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42799 Component: WebKit Impact: Visiting a malicious website may lead to user interface spoofing Description: The issue was addressed with improved UI handling.

CVE-2022-42816 [MEDIUM] CVE-2022-42816: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42816 Component: Beta Access Utility Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved state management.

CVE-2022-1725 [MEDIUM] CVE-2022-1725: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-1725 Component: CVE-2022-1725

CVE-2022-32923 [MEDIUM] CVE-2022-32923: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32923 Component: WebKit Impact: Processing maliciously crafted web content may disclose internal states of the app Description: A correctness issue in the JIT was addressed with improved checks.

CVE-2022-42829 [MEDIUM] CVE-2022-42829: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42829 Component: Photos Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved data protection.

CVE-2022-26699 [MEDIUM] CVE-2022-26699: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-26699 Component: TCC Impact: An app may be able to cause a denial-of-service to Endpoint Security clients Description: A logic issue was addressed with improved state management.

CVE-2022-32206 [MEDIUM] CVE-2022-32206: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32206 Component: CVE-2022-32206

CVE-2022-0696 [MEDIUM] CVE-2022-0696: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-0696 Component: CVE-2022-0696

CVE-2022-42798 [MEDIUM] CVE-2022-42798: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-42798 Component: Audio Impact: Parsing a maliciously crafted audio file may lead to disclosure of user information Description: The issue was addressed with improved memory handling.

CVE-2022-32864 [MEDIUM] CVE-2022-32864: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-32864 Component: Kernel Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved memory handling.

CVE-2022-48577 [MEDIUM] CVE-2022-48577: macOS Ventura 13 Apple Security Update: About the security content of macOS Ventura 13 Product: macOS Ventura Version: 13 CVE: CVE-2022-48577 Component: APFS Impact: An app may be able to access user-sensitive data Description: An access issue was addressed with improved access restrictions.