Filters

Apple Catalina33 vulnerabilities

First published (updated )
HT213343

Input Validation

high
7.8
First published (updated )
CVE-2022-32860

APFS. The issue was addressed with improved memory handling.

medium
6.7
First published (updated )
CVE-2022-32832

AppleMobileFileIntegrity. An authorization issue was addressed with improved state management.

high
7.8
First published (updated )
CVE-2022-32826

Input Validation

high
7.8
First published (updated )
CVE-2022-32820

CoreText. The issue was addressed with improved bounds checks.

critical
9.8
First published (updated )
CVE-2022-32839

File System Events. A logic issue was addressed with improved state management.

high
7.8
First published (updated )
CVE-2022-32819

ICU. An out-of-bounds write issue was addressed with improved bounds checking.

high
8.8
First published (updated )
CVE-2022-32787

Kernel. The issue was addressed with improved memory handling.

high
7.8
First published (updated )
CVE-2022-32813

Kernel. The issue was addressed with improved memory handling.

high
7.8
First published (updated )
CVE-2022-32815

libxml2. A memory initialization issue was addressed with improved memory handling.

medium
5.5
First published (updated )
CVE-2022-32823

Software Update. This issue was addressed by using HTTPS when sending information over the network.

medium
4.3
First published (updated )
CVE-2022-32857

Wi-Fi. This issue was addressed with improved checks.

critical
9.1
First published (updated )
CVE-2022-32847

Calendar. An information disclosure issue was addressed by removing the vulnerable code.

medium
5.5
First published (updated )
CVE-2022-32849

AppleScript. This issue was addressed with improved checks.

high
7.1
First published (updated )
CVE-2022-32797

Input Validation

high
7.1
First published (updated )
CVE-2022-32853

Input Validation

high
7.1
First published (updated )
CVE-2022-32851

AppleScript. An out-of-bounds read was addressed with improved bounds checking.

high
7.1
First published (updated )
CVE-2022-32831

Archive Utility. A logic issue was addressed with improved checks.

high
7.5
First published (updated )
CVE-2022-32910

Calendar. The issue was addressed with improved handling of caches.

medium
5.5
First published (updated )
CVE-2022-32805

Null Pointer Dereference

medium
5.5
First published (updated )
CVE-2022-32785

Intel Graphics Driver. The issue was addressed with improved memory handling.

high
7.8
First published (updated )
CVE-2022-32812

Intel Graphics Driver. A memory corruption vulnerability was addressed with improved locking.

high
7.8
First published (updated )
CVE-2022-32811

PackageKit. Description: An issue in the handling of environment variables was addressed with improv…

medium
5.5
First published (updated )
CVE-2022-32786

PackageKit. This issue was addressed with improved checks.

medium
5.5
First published (updated )
CVE-2022-32800

PluginKit. A logic issue was addressed with improved state management.

medium
5.5
First published (updated )
CVE-2022-32838

PS Normalizer. An out-of-bounds write issue was addressed with improved bounds checking.

high
7.1
First published (updated )
CVE-2022-32843

Input Validation

high
7.8
First published (updated )
CVE-2022-32842

SMB. An out-of-bounds read issue was addressed with improved bounds checking.

medium
5.9
First published (updated )
CVE-2022-32799

Spindump. This issue was addressed with improved file handling.

high
7.1
First published (updated )
CVE-2022-32807

TCC. An access issue was addressed with improvements to the sandbox.

medium
5.5
First published (updated )
CVE-2022-32834

Wi-Fi. This issue was addressed with improved checks.

high
7.8
First published (updated )
CVE-2022-32837

FaceTime. This issue was addressed by enabling hardened runtime.

medium
4.4
First published (updated )
CVE-2022-32781

Spotlight. A validation issue existed in the handling of symlinks and was addressed with improved va…

high
7.8
First published (updated )
CVE-2022-26704

Apple Catalina15 vulnerabilities

First published (updated )
HT213255

Printing. This issue was addressed by removing the vulnerable code.

medium
5.5
First published (updated )
CVE-2022-26746

SMB. An out-of-bounds write issue was addressed with improved bounds checking.

critical
9.3
First published (updated )
CVE-2022-26715

SoftwareUpdate. This issue was addressed with improved entitlements.

medium
5.5
First published (updated )
CVE-2022-26728

Tcl. This issue was addressed with improved environment sanitization.

medium
6.3
First published (updated )
CVE-2022-26755

Wi-Fi. A memory corruption issue was addressed with improved memory handling.

critical
9.3
First published (updated )
CVE-2022-26761

Buffer Overflow

critical
9.3
First published (updated )
CVE-2022-26763

Kernel. A memory corruption issue was addressed with improved validation.

critical
9.3
First published (updated )
CVE-2022-26714

Use After Free

critical
9.3
First published (updated )
CVE-2022-26757

Input Validation, Integer Overflow

critical
9.8
First published (updated )
CVE-2022-26775

libresolv. This issue was addressed with improved checks.

high
7.5
First published (updated )
CVE-2022-32790

Security. A certificate parsing issue was addressed with improved checks.

medium
5.5
First published (updated )
CVE-2022-26766

TCC. This issue was addressed with improved checks.

medium
6.5
First published (updated )
CVE-2022-26726

Input Validation

high
7.8
First published (updated )
CVE-2022-26751

Input Validation

high
7.1
First published (updated )
CVE-2022-26697

AppleScript. An out-of-bounds read was addressed with improved bounds checking.

high
7.1
First published (updated )
CVE-2022-26698

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203