What is CVE-2022-46704?

CVE-2022-46704 is a logic issue in PackageKit that was addressed with improved state management.

What is the affected software?

The affected software includes Apple macOS Ventura up to version 13.1, Apple macOS Big Sur up to version 11.7.2, and Apple macOS Monterey up to version 12.6.2.

How severe is CVE-2022-46704?

The severity of CVE-2022-46704 is not mentioned in the provided information.

How can I fix CVE-2022-46704?

To fix CVE-2022-46704, update your operating system to the recommended versions: Apple macOS Ventura 13.1, Apple macOS Big Sur 11.7.2, or Apple macOS Monterey 12.6.2.

Where can I find more information about CVE-2022-46704?

More information about CVE-2022-46704 can be found on the Apple support page: [link](https://support.apple.com/en-us/HT213532) [link](https://support.apple.com/en-us/HT213533) [link](https://support.apple.com/en-us/HT213534).

Vulnerability/
CVE-2022-46704

medium

5.5

CWE

20 190 362

13/12/2022

27/2/2023

20/8/2024

CVE-2022-46704: Input Validation

First published: Tue Dec 13 2022(Updated: )

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to modify protected parts of the file system.

Credit: Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive Security product-security@apple.com Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityABC Research s.r.o. ABC Research s.r.o. Wojciech Reguła @_r3ggi SecuRingPan ZhenPeng @Peterpan0927 STAR Labs SG PteMickey Jin @patch1t Trend MicroMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Wojciech Reguła @_r3ggi SecuRingPan ZhenPeng @Peterpan0927 STAR Labs SG PteMickey Jin @patch1t Trend MicroMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7ABC Research s.r.o. Wojciech Reguła @_r3ggi SecuRingPan ZhenPeng @Peterpan0927 STAR Labs SG PteMickey Jin @patch1t Trend MicroMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Mickey Jin @patch1t ABC Research s.r.o. ABC Research s.r.o. Wojciech Reguła @_r3ggi SecuRingPan ZhenPeng @Peterpan0927 STAR Labs SG PteMickey Jin @patch1t Trend MicroMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Pan ZhenPeng @Peterpan0927 STAR Labs SG PteMickey Jin @patch1t Trend MicroMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7CVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Mickey Jin @patch1t Trend MicroMickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityCVE-2022-35252 Linus Henze Pinauten GmbHYonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Yonghwi Jin @jinmo123 TheoriJohn Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7John Balestrieri TinrocketMickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Mickey Jin @patch1t Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Tommy Muir @Muirey03 John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7John Aakerblom @jaakerblom John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7John Aakerblom @jaakerblom Antonio Zekic @antoniozekic Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Weijia Dai @dwj1210 Momo SecurityIan Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Adam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Felix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Ian Beer Google Project ZeroFelix Poulin-Belanger pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7pattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7pattern-f @pattern_F_ Ant Security Lightpattern-f @pattern_F_ Ant Security LightAdam Doupé ASU SEFCOMApple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Apple Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7Adam M. CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7CVE-2022-46716 Mickey Jin @patch1t Offensive SecurityCsaba Fitzl @theevilbit Offensive SecurityJiwon Park Mieszko Wawrzyniak an anonymous researcher an anonymous researcher Ivan Fratric Google Project ZeroMickey Jin @patch1t CVE-2022-24836 CVE-2022-29181 KirtiKumar Anandrao Ramchandani Michael (Biscuit) Thomas Wojciech Reguła @_r3ggi SecuRingAdam M. an anonymous researcher @real_as3617 Hyeon Park @tree_segment Team ApplePIEHyeon Park @tree_segment Team ApplePIEMaddie Stone Google Project ZeroChengGang Wu Institute of Computing TechnologyYan Kang Institute of Computing TechnologyYuHao Hu Institute of Computing TechnologyYue Sun Institute of Computing TechnologyJiming Wang Institute of Computing Technology Institute of Computing TechnologyJiKai Ren Institute of Computing TechnologyHang Shu Institute of Computing TechnologyChinese Academy SciencesKirtiKumar Anandrao Ramchandani (kirtikumarar.com) hazbinhotel Trend Micro Zero Day InitiativeSamuel Groß Google V8 SecuritySamuel Groß Google V8 SecurityDohyun Lee @l33d0hyun DNSLab at Korea UniversityRyan Shin IAAI SecLab at Korea UniversitySamuel Groß Google V8 Securityan anonymous researcher Clément Lecigne Google's Threat Analysis GroupThijs Alkemade @xnyhps Computest Sector 7

Affected Software	Affected Version	How to fix
Apple macOS Monterey	<12.6.2	12.6.2
Apple macOS	>=11.0<11.7.2
Apple macOS	>=12.0.0<12.6.2
Apple macOS	=13.0
Apple macOS	<11.7.2	11.7.2
Apple macOS	<13.1	13.1
	<13.1	13.1

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT213533 (Advisory)
https://support.apple.com/en-us/HT213532 (Advisory)
https://support.apple.com/en-us/HT213534 (Advisory)
https://support.apple.com/kb/HT213534
https://support.apple.com/en-us/102808 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is CVE-2022-46704?
CVE-2022-46704 is a logic issue in PackageKit that was addressed with improved state management.
What is the affected software?
The affected software includes Apple macOS Ventura up to version 13.1, Apple macOS Big Sur up to version 11.7.2, and Apple macOS Monterey up to version 12.6.2.
How severe is CVE-2022-46704?
The severity of CVE-2022-46704 is not mentioned in the provided information.
How can I fix CVE-2022-46704?
To fix CVE-2022-46704, update your operating system to the recommended versions: Apple macOS Ventura 13.1, Apple macOS Big Sur 11.7.2, or Apple macOS Monterey 12.6.2.
Where can I find more information about CVE-2022-46704?
More information about CVE-2022-46704 can be found on the Apple support page: [link](https://support.apple.com/en-us/HT213532) [link](https://support.apple.com/en-us/HT213533) [link](https://support.apple.com/en-us/HT213534).

agent/type
agent/first-publish-date
agent/severity
collector/apple-support
source/Apple
agent/software-canonical-lookup
collector/mitre-cve
source/MITRE
agent/trending
agent/source
collector/nvd-index
agent/software-canonical-lookup-request
alias/CVE-2022-42847
alias/CVE-2022-42865
alias/CVE-2022-42854
alias/CVE-2022-42853
alias/CVE-2022-42859
alias/CVE-2022-35252
alias/CVE-2022-32942
alias/CVE-2022-46720
alias/CVE-2022-46710
alias/CVE-2022-46693
alias/CVE-2022-42864
alias/CVE-2022-46690
alias/CVE-2022-46697
alias/CVE-2022-42837
alias/CVE-2022-46689
alias/CVE-2022-46701
alias/CVE-2022-42842
alias/CVE-2022-42861
alias/CVE-2022-42845
alias/CVE-2022-48618
alias/CVE-2022-42839
alias/CVE-2022-46716
alias/CVE-2022-46704
alias/CVE-2022-32943
alias/CVE-2022-42840
alias/CVE-2022-42855
alias/CVE-2022-42862
alias/CVE-2022-24836
alias/CVE-2022-29181
alias/CVE-2022-46695
alias/CVE-2022-46718
alias/CVE-2022-46703
alias/CVE-2022-42866
alias/CVE-2022-32919
alias/CVE-2022-46725
alias/CVE-2022-46705
alias/CVE-2022-42867
alias/CVE-2022-46691
alias/CVE-2022-46692
alias/CVE-2022-42852
alias/CVE-2022-46696
alias/CVE-2022-46700
alias/CVE-2022-46698
alias/CVE-2022-46699
alias/CVE-2022-42863
alias/CVE-2022-42856
alias/CVE-2022-42841
alias/CVE-2022-42858
agent/weakness
agent/last-modified-date
agent/references
agent/author
agent/description
agent/softwarecombine
agent/tags
agent/event
vendor/apple
canonical/apple macos monterey
canonical/apple macos
version/apple macos/11.0
version/apple macos/12.0.0
version/apple macos/13.0