An issue in code signature validation was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS Monterey 12.6. An app may be able to access user-sensitive data.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT213443 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213444 | Release Notes Vendor Advisory |
https://support.apple.com/en-us/HT213488 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
02 Nov 2022, 19:12
Type | Values Removed | Values Added |
---|---|---|
First Time |
Apple macos
Apple |
|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
References | (MISC) https://support.apple.com/en-us/HT213443 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213444 - Release Notes, Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT213488 - Release Notes, Vendor Advisory | |
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* |
01 Nov 2022, 20:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-01 20:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-42789
Mitre link : CVE-2022-42789
CVE.ORG link : CVE-2022-42789
JSON object : View
Products Affected
apple
- macos
CWE