CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-22650 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22650
15 Mar 2022 — This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. A plug-in may be able to inherit the application's permissions and access user data. Este problema se abordó con comprobaciones mejoradas. Este problema es corregido en macOS Big Sur versión 11.6.5, macOS Monterey versión 12.3 y Security Update 2022-003 Catalina. • https://support.apple.com/en-us/HT213183 • CWE-281: Improper Preservation of Permissions •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-22660 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22660
15 Mar 2022 — This issue was addressed with a new entitlement. This issue is fixed in macOS Monterey 12.3. An app may be able to spoof system notifications and UI. Este problema se abordó con una nueva habilitación. Este problema es corregido en macOS Monterey versión 12.3. • https://support.apple.com/en-us/HT213183 •
CVSS: 3.3EPSS: 0%CPEs: 6EXPL: 0CVE-2022-22656 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22656
15 Mar 2022 — An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. A local attacker may be able to view the previous logged in user’s desktop from the fast user switching screen. Se abordó un problema de autenticación con una administración de estados mejorada. Este problema es corregido en macOS Big Sur versión 11.6.5, macOS Monterey versión 12.3 y Security Update 2022-003 Catalina. • https://support.apple.com/en-us/HT213183 • CWE-287: Improper Authentication •
CVSS: 7.1EPSS: 0%CPEs: 16EXPL: 0CVE-2022-22627 – Apple macOS SCPT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-22627
15 Mar 2022 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. Processing a maliciously crafted AppleScript binary may result in unexpected application termination or disclosure of process memory. Se abordó una lectura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en macOS Big Sur versión 11.6.5, macOS Monterey versión 12.3 y Security Update 2022-003 Catalina. • https://support.apple.com/en-us/HT213183 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2022-22638 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22638
15 Mar 2022 — A null pointer dereference was addressed with improved validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An attacker in a privileged position may be able to perform a denial of service attack. Se abordó una desreferencia de puntero null con una comprobación mejorada. Este problema es corregido en tvOS versión 15.4, iOS versión 15.4 y iPadOS versión 15.4, macOS Big Sur versión 11.6.5, Security Upd... • https://support.apple.com/en-us/HT213182 • CWE-476: NULL Pointer Dereference •
CVSS: 9.3EPSS: 0%CPEs: 10EXPL: 0CVE-2022-22614 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22614
15 Mar 2022 — A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. Este problema es corregido en tvOS versión 15.4, iOS versión 15.4 y iPadOS versión 15.4, macOS Big Sur versió... • https://support.apple.com/en-us/HT213182 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-22669 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22669
15 Mar 2022 — A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. Este problema es corregido en macOS Monterey versión 12.3. • https://support.apple.com/en-us/HT213183 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-22657 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22657
15 Mar 2022 — A memory initialization issue was addressed with improved memory handling. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution. Se abordó un problema de inicialización de la memoria con una administración de memoria mejorada. Este problema es corregido en Logic Pro versión 10.7.3, GarageBand versión 10.4.6 y macOS Monterey versión 12.3. • https://support.apple.com/en-us/HT213183 • CWE-665: Improper Initialization •
CVSS: 9.3EPSS: 0%CPEs: 10EXPL: 0CVE-2022-22615 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22615
15 Mar 2022 — A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, Security Update 2022-003 Catalina, watchOS 8.5, macOS Monterey 12.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. Este problema es corregido en tvOS versión 15.4, iOS versión 15.4 y iPadOS versión 15.4, macOS Big Sur versió... • https://support.apple.com/en-us/HT213182 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2022-22609 – Apple Security Advisory 2022-03-14-4
https://notcve.org/view.php?id=CVE-2022-22609
15 Mar 2022 — The issue was addressed with additional permissions checks. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Monterey 12.3, watchOS 8.5. A malicious application may be able to read other applications' settings. Este problema se abordó con comprobaciones de permisos adicionales. Este problema es corregido en tvOS versión 15.4, iOS versión 15.4 y iPadOS versión 15.4, macOS Monterey versión 12.3, watchOS versión 8.5. • https://support.apple.com/en-us/HT213182 •