PT-2022-21466 · Apple · Apple Macos

Patch1T

Published

2022-07-20

Updated

2022-12-27

CVE-2022-32786

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to Security Update 2022-005 Catalina macOS versions prior to 11.6.8 Big Sur macOS versions prior to 12.5 Monterey

Description An issue in the handling of environment variables was addressed with improved validation. This issue allows an app to modify protected parts of the file system.

Recommendations For macOS versions prior to Security Update 2022-005 Catalina, apply Security Update 2022-005. For macOS versions prior to 11.6.8 Big Sur, update to macOS 11.6.8 Big Sur. For macOS versions prior to 12.5 Monterey, update to macOS 12.5 Monterey.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2022-32786

Affected Products

Apple Macos

PT-2022-21466 · Apple · Apple Macos

CVE-2022-32786

Weakness Enumeration

Related Identifiers

Affected Products

References · 11