CVSS: 6.4EPSS: 0%CPEs: 3EXPL: 0CVE-2022-42832
https://notcve.org/view.php?id=CVE-2022-42832
A race condition was addressed with improved locking. This issue is fixed in iOS 16.1 and iPadOS 16, macOS Ventura 13. An app with root privileges may be able to execute arbitrary code with kernel privileges. Se solucionó una condición de ejecución con un bloqueo mejorado. Este problema se solucionó en iOS 16.1 y iPadOS 16, macOS Ventura 13. • https://support.apple.com/en-us/HT213488 https://support.apple.com/en-us/HT213489 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-32936
https://notcve.org/view.php?id=CVE-2022-32936
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13. An app may be able to disclose kernel memory. Se solucionó una lectura fuera de los límites con una validación de entrada mejorada. Este problema se solucionó en macOS Ventura 13. • https://support.apple.com/en-us/HT213488 • CWE-125: Out-of-bounds Read •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-42791
https://notcve.org/view.php?id=CVE-2022-42791
A race condition was addressed with improved state handling. This issue is fixed in macOS Ventura 13. An app may be able to execute arbitrary code with kernel privileges. Se solucionó una condición de ejecución con un mejor manejo del estado. Este problema se solucionó en macOS Ventura 13. • https://support.apple.com/en-us/HT213488 https://support.apple.com/kb/HT213446 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-42796
https://notcve.org/view.php?id=CVE-2022-42796
This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 15.7 and iPadOS 15.7, macOS Ventura 13. An app may be able to gain elevated privileges. Este problema se solucionó eliminando el código vulnerable. Este problema se solucionó en iOS 15.7 y iPadOS 15.7, macOS Ventura 13. • https://support.apple.com/en-us/HT213445 https://support.apple.com/en-us/HT213488 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-32905
https://notcve.org/view.php?id=CVE-2022-32905
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted DMG file may lead to arbitrary code execution with system privileges. Este problema se solucionó con una validación mejorada de los enlaces simbólicos. Este problema se solucionó en macOS Ventura 13. • https://support.apple.com/en-us/HT213488 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •