Lucene search
HistoryFeb 27, 2023 - 8:15 p.m.
CVE-2022-32900
logic issue
macos updates
elevated privileges
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6, macOS Big Sur 11.7. An app may be able to gain elevated privileges.
Affected configurations
Node
applemacosRange11.0–11.7
ORapplemacosRange12.0.0–12.6
Related
prion
prion
Code injection
2023-02-27 20:15:00
cvelist
cvelist
CVE-2022-32900
2023-02-27 00:00:00
cve
cve
CVE-2022-32900
2023-02-27 20:15:12
openvas
openvas
Apple Mac OS X Security Update (HT213444)
2022-09-13 00:00:00
Apple Mac OS X Security Update (HT213443)
2022-09-13 00:00:00
nessus
nessus
macOS 11.x < 11.7 (HT213443)
2022-09-15 00:00:00
macOS 12.x < 12.6 Multiple Vulnerabilities (HT213444)
2022-09-15 00:00:00
apple
apple
About the security content of macOS Big Sur 11.7
2022-09-12 00:00:00
About the security content of macOS Monterey 12.6
2022-09-12 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for NVD:CVE-2022-32900