CVE-2022-32905
https://notcve.org/view.php?id=CVE-2022-32905
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted DMG file may lead to arbitrary code execution with system privileges. Este problema se solucionó con una validación mejorada de los enlaces simbólicos. Este problema se solucionó en macOS Ventura 13. • https://support.apple.com/en-us/HT213488 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVE-2022-42819
https://notcve.org/view.php?id=CVE-2022-42819
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. An app may be able to read sensitive location information. Se solucionó un problema de acceso mejorando las restricciones de acceso. Este problema se solucionó en macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. • https://support.apple.com/en-us/HT213443 https://support.apple.com/en-us/HT213444 https://support.apple.com/en-us/HT213488 •
CVE-2022-32915
https://notcve.org/view.php?id=CVE-2022-32915
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura 13. An app may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de confusión de tipos con comprobaciones mejoradas. Este problema se solucionó en macOS Ventura 13. • http://seclists.org/fulldisclosure/2023/Jan/20 https://support.apple.com/en-us/HT213488 https://support.apple.com/kb/HT213604 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2022-42790
https://notcve.org/view.php?id=CVE-2022-42790
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, iOS 15.7 and iPadOS 15.7, macOS Monterey 12.6. A user may be able to view restricted content from the lock screen. Se abordó un problema lógico con una mejor gestión del estado. Este problema se solucionó en macOS Big Sur 11.7, macOS Ventura 13, iOS 16, iOS 15.7 y iPadOS 15.7, macOS Monterey 12.6. • https://support.apple.com/en-us/HT213443 https://support.apple.com/en-us/HT213444 https://support.apple.com/en-us/HT213445 https://support.apple.com/en-us/HT213446 https://support.apple.com/en-us/HT213488 •
CVE-2022-32910
https://notcve.org/view.php?id=CVE-2022-32910
A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5, Security Update 2022-005 Catalina. An archive may be able to bypass Gatekeeper. Se solucionó un problema de lógica con controles mejorados. Este problema se solucionó en macOS Big Sur 11.6.8, macOS Monterey 12.5, Actualización de seguridad 2022-005 Catalina. • https://support.apple.com/en-us/HT213343 https://support.apple.com/en-us/HT213344 https://support.apple.com/en-us/HT213345 •