What is the vulnerability ID?

The vulnerability ID is CVE-2022-22660.

What is the severity of CVE-2022-22660?

The severity of CVE-2022-22660 is medium.

What is the affected software for CVE-2022-22660?

The affected software for CVE-2022-22660 is macOS Monterey version up to and exclusive of 12.3.

How was CVE-2022-22660 fixed?

CVE-2022-22660 was fixed with a new entitlement that is included in macOS Monterey 12.3.

Can an app spoof system notifications and UI due to CVE-2022-22660?

Yes, an app may be able to spoof system notifications and UI due to CVE-2022-22660.

Vulnerability/
CVE-2022-22660

medium

5.5

14/3/2022

18/3/2022

3/8/2024

CVE-2022-22660

First published: Mon Mar 14 2022(Updated: )

System Preferences. This issue was addressed with a new entitlement.

Credit: Guilherme Rambo Best Buddy Apps product-security@apple.com product-security@apple.com

Affected Software	Affected Version	How to fix
Apple macOS Monterey	<12.3	12.3
Apple macOS	>=12.0<12.3

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT213183 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

HT213183

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2022-22633
CVE-2022-22669
CVE-2022-22665
CVE-2022-22630
CVE-2022-22631
CVE-2022-22625
CVE-2022-22648
CVE-2022-22626
CVE-2022-22627
CVE-2022-22597
CVE-2022-22616
CVE-2022-22663
CVE-2022-26691
CVE-2021-22946
CVE-2021-22947
CVE-2021-22945
CVE-2022-22643
CVE-2022-22657
CVE-2022-22664
CVE-2021-30977
CVE-2022-22611
CVE-2022-22612
CVE-2022-46706
CVE-2022-22661
CVE-2022-22641
CVE-2022-22613
CVE-2022-22614
CVE-2022-22615
CVE-2022-22632
CVE-2022-22638
CVE-2022-22640
CVE-2021-30946
CVE-2021-36976
CVE-2022-21658
CVE-2022-22647
CVE-2022-22656
CVE-2022-22672
CVE-2022-22644
CVE-2022-26690
CVE-2022-26688
CVE-2022-22617
CVE-2022-22609
CVE-2022-22650
CVE-2022-22655
CVE-2022-22600
CVE-2022-22599
CVE-2022-22651
CVE-2022-22639
CVE-2022-22660
CVE-2022-22621
CVE-2021-4136
CVE-2021-4166
CVE-2021-4173
CVE-2021-4187
CVE-2021-4192
CVE-2021-4193
CVE-2021-46059
CVE-2022-0128
CVE-2022-0156
CVE-2022-0158
CVE-2021-30918
CVE-2022-22662
CVE-2022-22610
CVE-2022-22624
CVE-2022-22628
CVE-2022-22629
CVE-2022-22637
CVE-2022-22668
CVE-2022-22582

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2022-22660.
What is the severity of CVE-2022-22660?
The severity of CVE-2022-22660 is medium.
What is the affected software for CVE-2022-22660?
The affected software for CVE-2022-22660 is macOS Monterey version up to and exclusive of 12.3.
How was CVE-2022-22660 fixed?
CVE-2022-22660 was fixed with a new entitlement that is included in macOS Monterey 12.3.
Can an app spoof system notifications and UI due to CVE-2022-22660?
Yes, an app may be able to spoof system notifications and UI due to CVE-2022-22660.

collector/apple-support
collector/nvd-api
collector/nvd-index
agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/references
agent/tags
agent/description
agent/event
agent/trending
vendor/apple
canonical/apple macos monterey
canonical/apple macos
version/apple macos/12.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.