Apple Security Update 2022-003 Catalina vulnerabilities
24 known vulnerabilities affecting apple/security_update_2022-003_catalina.
Total CVEs
24
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH13MEDIUM10LOW1
Vulnerabilities
Page 1 of 2
CVE-2022-22661HIGHCVSS 7.82022-03-14
CVE-2022-22661 [HIGH] CVE-2022-22661: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22661
Component: Intel Graphics Driver
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A type confusion issue was addressed with improved state handling.
apple
CVE-2022-46706HIGHCVSS 7.82022-03-14
CVE-2022-46706 [HIGH] CVE-2022-46706: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-46706
Component: Intel Graphics Driver
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A type confusion issue was addressed with improved state handling.
apple
CVE-2022-22597HIGHCVSS 7.82022-03-14
CVE-2022-22597 [HIGH] CVE-2022-22597: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22597
Component: AppleScript
Impact: Processing a maliciously crafted file may lead to arbitrary code execution
Description: A memory corruption issue was addressed with improved validation.
apple
CVE-2022-22626HIGHCVSS 7.12022-03-14
CVE-2022-22626 [HIGH] CVE-2022-22626: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22626
Component: AppleScript
Impact: Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory
Description: An out-of-bounds read was addressed with improved bounds checking.
apple
CVE-2022-22625HIGHCVSS 7.12022-03-14
CVE-2022-22625 [HIGH] CVE-2022-22625: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22625
Component: AppleScript
Impact: Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory
Description: An out-of-bounds read was addressed with improved input validation.
apple
CVE-2022-22631HIGHCVSS 7.82022-03-14
CVE-2022-22631 [HIGH] CVE-2022-22631: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22631
Component: AppleGraphicsControl
Impact: An application may be able to gain elevated privileges
Description: An out-of-bounds write issue was addressed with improved bounds checking.
apple
CVE-2022-22615HIGHCVSS 7.82022-03-14
CVE-2022-22615 [HIGH] CVE-2022-22615: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22615
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2022-22665HIGHCVSS 7.82022-03-14
CVE-2022-22665 [HIGH] CVE-2022-22665: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22665
Component: AppKit
Impact: A malicious application may be able to gain root privileges
Description: A logic issue was addressed with improved validation.
apple
CVE-2022-22617HIGHCVSS 7.82022-03-14
CVE-2022-22617 [HIGH] CVE-2022-22617: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22617
Component: PackageKit
Impact: An application may be able to gain elevated privileges
Description: A logic issue was addressed with improved state management.
apple
CVE-2022-22627HIGHCVSS 7.12022-03-14
CVE-2022-22627 [HIGH] CVE-2022-22627: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22627
Component: AppleScript
Impact: Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory
Description: An out-of-bounds read was addressed with improved bounds checking.
apple
CVE-2022-22672HIGHCVSS 7.82022-03-14
CVE-2022-22672 [HIGH] CVE-2022-22672: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22672
Component: MobileAccessoryUpdater
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2022-22614HIGHCVSS 7.82022-03-14
CVE-2022-22614 [HIGH] CVE-2022-22614: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22614
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2022-22613HIGHCVSS 7.82022-03-14
CVE-2022-22613 [HIGH] CVE-2022-22613: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22613
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: An out-of-bounds write issue was addressed with improved bounds checking.
apple
CVE-2022-22638MEDIUMCVSS 6.52022-03-14
CVE-2022-22638 [MEDIUM] CVE-2022-22638: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22638
Component: Kernel
Impact: An attacker in a privileged position may be able to perform a denial of service attack
Description: A null pointer dereference was addressed with improved validation.
apple
CVE-2022-22582MEDIUMCVSS 5.52022-03-14
CVE-2022-22582 [MEDIUM] CVE-2022-22582: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22582
Component: WebKit
Impact: Processing maliciously crafted web content may disclose sensitive user information
Description: A cookie management issue was addressed with improved state management.
apple
CVE-2022-22589MEDIUMCVSS 6.12022-03-14
CVE-2022-22589 [MEDIUM] CVE-2022-22589: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22589
Component: WebKit
Impact: Processing a maliciously crafted mail message may lead to running arbitrary javascript
Description: A validation issue was addressed with improved input sanitization.
apple
CVE-2022-22662MEDIUMCVSS 6.52022-03-14
CVE-2022-22662 [MEDIUM] CVE-2022-22662: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22662
Component: WebKit
Impact: Processing maliciously crafted web content may disclose sensitive user information
Description: A cookie management issue was addressed with improved state management.
apple
CVE-2022-26688MEDIUMCVSS 4.42022-03-14
CVE-2022-26688 [MEDIUM] CVE-2022-26688: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-26688
Component: PackageKit
Impact: A malicious app with root privileges may be able to modify the contents of system files
Description: An issue in the handling of symlinks was addressed with improved validation.
apple
CVE-2022-22648MEDIUMCVSS 5.52022-03-14
CVE-2022-22648 [MEDIUM] CVE-2022-22648: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22648
Component: AppleScript
Impact: An application may be able to read restricted memory
Description: This issue was addressed with improved checks.
apple
CVE-2022-22616MEDIUMCVSS 5.5PoC2022-03-14
CVE-2022-22616 [MEDIUM] CVE-2022-22616: Security Update 2022-003 Catalina
Apple Security Update: About the security content of Security Update 2022-003 Catalina
Product: Security Update 2022-003 Catalina
CVE: CVE-2022-22616
Component: BOM
Impact: A maliciously crafted ZIP archive may bypass Gatekeeper checks
Description: This issue was addressed with improved checks.
apple
1 / 2Next →