First published: Wed Jul 20 2022(Updated: )
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6. An app may be able to read arbitrary files.
Credit: Mickey Jin @patch1t Trend MicroMickey Jin @patch1t Trend MicroMickey Jin @patch1t Trend MicroMickey Jin @patch1t Trend Micro product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Catalina | ||
Apple macOS Big Sur | <11.6.8 | 11.6.8 |
<12.5 | 12.5 | |
Apple iOS | <15.6 | 15.6 |
Apple iPadOS | <15.6 | 15.6 |
Apple iPadOS | <15.6 | |
Apple iPhone OS | <15.6 | |
Apple Mac OS X | =10.15.7-security_update_2020-001 | |
Apple Mac OS X | =10.15.7-security_update_2021-001 | |
Apple Mac OS X | =10.15.7-security_update_2021-002 | |
Apple Mac OS X | =10.15.7-security_update_2021-003 | |
Apple Mac OS X | =10.15.7-security_update_2021-004 | |
Apple Mac OS X | =10.15.7-security_update_2021-005 | |
Apple Mac OS X | =10.15.7-security_update_2021-006 | |
Apple Mac OS X | =10.15.7-security_update_2021-007 | |
Apple Mac OS X | =10.15.7-security_update_2021-008 | |
Apple Mac OS X | =10.15.7-security_update_2022-001 | |
Apple Mac OS X | =10.15.7-security_update_2022-002 | |
Apple Mac OS X | =10.15.7-security_update_2022-003 | |
Apple macOS | <10.15.7 | |
Apple macOS | >=11.0<11.6.8 | |
Apple macOS | >=12.0<12.5 | |
Apple macOS | =10.15.7 | |
Apple macOS | =10.15.7-security_update_2022-004 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-32838 is a logic issue in PluginKit that has been addressed with improved state management.
CVE-2022-32838 affects Apple iOS, Apple iPadOS, Apple Catalina, Apple macOS Big Sur, and Apple macOS Monterey.
The severity of CVE-2022-32838 is not mentioned in the provided information.
To fix CVE-2022-32838, ensure that you have the latest software updates installed for the affected products.
You can find more information about CVE-2022-32838 on the Apple support website.