What is CVE-2022-22644?

CVE-2022-22644 is a vulnerability in NSSpellChecker that allows unauthorized access to Contact cards and results in a privacy issue.

Which software versions are affected by CVE-2022-22644?

CVE-2022-22644 affects macOS Monterey version up to and excluding 12.3.

How can I fix the CVE-2022-22644 vulnerability?

To fix the CVE-2022-22644 vulnerability, update your macOS Monterey to version 12.3 or later.

What is the severity of CVE-2022-22644?

The severity of CVE-2022-22644 is not specified.

Where can I find more information about CVE-2022-22644?

You can find more information about CVE-2022-22644 in the Apple security advisory at https://support.apple.com/en-us/HT213183.

Vulnerability/
CVE-2022-22644

medium

5.5

14/3/2022

18/3/2022

3/8/2024

CVE-2022-22644

First published: Mon Mar 14 2022(Updated: )

A privacy issue existed in the handling of Contact cards. This was addressed with improved state management. This issue is fixed in macOS Monterey 12.3. A malicious application may be able to access information about a user's contacts.

Credit: Thomas Roth @stacksmashing leveldown security product-security@apple.com

Affected Software	Affected Version	How to fix
Apple macOS Monterey	<12.3	12.3
Apple macOS	>=12.0<12.3

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT213183 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

HT213183

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2022-22633
CVE-2022-22669
CVE-2022-22665
CVE-2022-22630
CVE-2022-22631
CVE-2022-22625
CVE-2022-22648
CVE-2022-22626
CVE-2022-22627
CVE-2022-22597
CVE-2022-22616
CVE-2022-22663
CVE-2022-26691
CVE-2021-22946
CVE-2021-22947
CVE-2021-22945
CVE-2022-22643
CVE-2022-22657
CVE-2022-22664
CVE-2021-30977
CVE-2022-22611
CVE-2022-22612
CVE-2022-46706
CVE-2022-22661
CVE-2022-22641
CVE-2022-22613
CVE-2022-22614
CVE-2022-22615
CVE-2022-22632
CVE-2022-22638
CVE-2022-22640
CVE-2021-30946
CVE-2021-36976
CVE-2022-21658
CVE-2022-22647
CVE-2022-22656
CVE-2022-22672
CVE-2022-22644
CVE-2022-26690
CVE-2022-26688
CVE-2022-22617
CVE-2022-22609
CVE-2022-22650
CVE-2022-22655
CVE-2022-22600
CVE-2022-22599
CVE-2022-22651
CVE-2022-22639
CVE-2022-22660
CVE-2022-22621
CVE-2021-4136
CVE-2021-4166
CVE-2021-4173
CVE-2021-4187
CVE-2021-4192
CVE-2021-4193
CVE-2021-46059
CVE-2022-0128
CVE-2022-0156
CVE-2022-0158
CVE-2021-30918
CVE-2022-22662
CVE-2022-22610
CVE-2022-22624
CVE-2022-22628
CVE-2022-22629
CVE-2022-22637
CVE-2022-22668
CVE-2022-22582

Frequently Asked Questions

What is CVE-2022-22644?
CVE-2022-22644 is a vulnerability in NSSpellChecker that allows unauthorized access to Contact cards and results in a privacy issue.
Which software versions are affected by CVE-2022-22644?
CVE-2022-22644 affects macOS Monterey version up to and excluding 12.3.
How can I fix the CVE-2022-22644 vulnerability?
To fix the CVE-2022-22644 vulnerability, update your macOS Monterey to version 12.3 or later.
What is the severity of CVE-2022-22644?
The severity of CVE-2022-22644 is not specified.
Where can I find more information about CVE-2022-22644?
You can find more information about CVE-2022-22644 in the Apple security advisory at https://support.apple.com/en-us/HT213183.

collector/apple-support
collector/nvd-index
agent/severity
agent/references
agent/author
agent/event
agent/description
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/apple
canonical/apple macos monterey
canonical/apple macos
version/apple macos/12.0