CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-32915
https://notcve.org/view.php?id=CVE-2022-32915
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura 13. An app may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de confusión de tipos con comprobaciones mejoradas. Este problema se solucionó en macOS Ventura 13. • http://seclists.org/fulldisclosure/2023/Jan/20 https://support.apple.com/en-us/HT213488 https://support.apple.com/kb/HT213604 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-42796
https://notcve.org/view.php?id=CVE-2022-42796
This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 15.7 and iPadOS 15.7, macOS Ventura 13. An app may be able to gain elevated privileges. Este problema se solucionó eliminando el código vulnerable. Este problema se solucionó en iOS 15.7 y iPadOS 15.7, macOS Ventura 13. • https://support.apple.com/en-us/HT213445 https://support.apple.com/en-us/HT213488 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-32905
https://notcve.org/view.php?id=CVE-2022-32905
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted DMG file may lead to arbitrary code execution with system privileges. Este problema se solucionó con una validación mejorada de los enlaces simbólicos. Este problema se solucionó en macOS Ventura 13. • https://support.apple.com/en-us/HT213488 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-42809
https://notcve.org/view.php?id=CVE-2022-42809
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted gcx file may lead to unexpected app termination or arbitrary code execution. El problema se solucionó mejorando el manejo de la memoria. Este problema se solucionó en macOS Ventura 13. • https://support.apple.com/en-us/HT213488 •
CVSS: 6.7EPSS: 0%CPEs: 3EXPL: 0CVE-2022-42829
https://notcve.org/view.php?id=CVE-2022-42829
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13. An app with root privileges may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de use-after-free con una gestión de memoria mejorada. Este problema se solucionó en iOS 16.1 y iPadOS 16, macOS Ventura 13. • https://support.apple.com/en-us/HT213488 https://support.apple.com/en-us/HT213489 • CWE-416: Use After Free •