Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-29046 (GCVE-0-2022-29046)
Vulnerability from cvelistv5 – Published: 2022-04-12 19:50 – Updated: 2024-08-03 06:10
VLAI
EPSS
Summary
Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.
Severity
5.4 (Medium)
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://www.jenkins.io/security/advisory/2022-04-… | x_refsource_CONFIRM |
| https://support.apple.com/kb/HT213345 | x_refsource_CONFIRM |
| http://seclists.org/fulldisclosure/2022/Jul/18 | mailing-listx_refsource_FULLDISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Jenkins project | Jenkins Subversion Plugin |
Affected:
unspecified , ≤ 2.15.3
(custom)
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T06:10:58.937Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.apple.com/kb/HT213345"
},
{
"name": "20220721 APPLE-SA-2022-07-20-2 macOS Monterey 12.5",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2022/Jul/18"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Jenkins Subversion Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "2.15.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission."
}
],
"providerMetadata": {
"dateUpdated": "2023-10-24T14:21:30.891Z",
"orgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b",
"shortName": "jenkins"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.apple.com/kb/HT213345"
},
{
"name": "20220721 APPLE-SA-2022-07-20-2 macOS Monterey 12.5",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2022/Jul/18"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "jenkinsci-cert@googlegroups.com",
"ID": "CVE-2022-29046",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Jenkins Subversion Plugin",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_value": "2.15.3"
}
]
}
}
]
},
"vendor_name": "Jenkins project"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617",
"refsource": "CONFIRM",
"url": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617"
},
{
"name": "https://support.apple.com/kb/HT213345",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT213345"
},
{
"name": "20220721 APPLE-SA-2022-07-20-2 macOS Monterey 12.5",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2022/Jul/18"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b",
"assignerShortName": "jenkins",
"cveId": "CVE-2022-29046",
"datePublished": "2022-04-12T19:50:44.000Z",
"dateReserved": "2022-04-11T00:00:00.000Z",
"dateUpdated": "2024-08-03T06:10:58.937Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-29046",
"date": "2026-06-14",
"epss": "0.00096",
"percentile": "0.26814"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:subversion:*:*:*:*:*:jenkins:*:*\", \"versionEndIncluding\": \"2.15.3\", \"matchCriteriaId\": \"FFE39036-B5C9-4E00-BD27-0D090D4958E1\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.0\", \"versionEndExcluding\": \"12.5\", \"matchCriteriaId\": \"BFABC0C7-944C-4B46-A985-8B4F8BF93F54\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.\"}, {\"lang\": \"es\", \"value\": \"El plugin Jenkins Subversion versiones 2.15.3 y anteriores, no escapan el nombre y la descripci\\u00f3n de los par\\u00e1metros de las etiquetas List Subversion (y m\\u00e1s) en las visualizaciones que muestran par\\u00e1metros, resultando en una vulnerabilidad de tipo cross-site scripting (XSS) almacenado explotable por atacantes con permiso de Item/Configure\"}]",
"id": "CVE-2022-29046",
"lastModified": "2024-11-21T06:58:24.120",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\", \"baseScore\": 5.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.3, \"impactScore\": 2.7}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:S/C:N/I:P/A:N\", \"baseScore\": 3.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 6.8, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2022-04-12T20:15:09.567",
"references": "[{\"url\": \"http://seclists.org/fulldisclosure/2022/Jul/18\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT213345\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2022/Jul/18\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT213345\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "jenkinsci-cert@googlegroups.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-29046\",\"sourceIdentifier\":\"jenkinsci-cert@googlegroups.com\",\"published\":\"2022-04-12T20:15:09.567\",\"lastModified\":\"2024-11-21T06:58:24.120\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.\"},{\"lang\":\"es\",\"value\":\"El plugin Jenkins Subversion versiones 2.15.3 y anteriores, no escapan el nombre y la descripci\u00f3n de los par\u00e1metros de las etiquetas List Subversion (y m\u00e1s) en las visualizaciones que muestran par\u00e1metros, resultando en una vulnerabilidad de tipo cross-site scripting (XSS) almacenado explotable por atacantes con permiso de Item/Configure\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:N/I:P/A:N\",\"baseScore\":3.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.8,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:subversion:*:*:*:*:*:jenkins:*:*\",\"versionEndIncluding\":\"2.15.3\",\"matchCriteriaId\":\"FFE39036-B5C9-4E00-BD27-0D090D4958E1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.0\",\"versionEndExcluding\":\"12.5\",\"matchCriteriaId\":\"BFABC0C7-944C-4B46-A985-8B4F8BF93F54\"}]}]}],\"references\":[{\"url\":\"http://seclists.org/fulldisclosure/2022/Jul/18\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT213345\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2022/Jul/18\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT213345\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
WID-SEC-W-2022-0778
Vulnerability from csaf_certbund - Published: 2022-07-20 22:00 - Updated: 2025-10-20 22:00Summary
Apple macOS: Mehrere Schwachstellen
Severity
Kritisch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
Angriff: Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern, Sicherheitsmaßnahmen zu umgehen, beliebigen Code auszuführen, Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, Informationen falsch darzustellen und einen Cross-Site-Scripting-Angriff durchzuführen.
Betroffene Betriebssysteme: - MacOS X
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
Affected products
Known affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Apple macOS Catalina <2022-005
Apple / macOS
|
Catalina <2022-005 | ||
|
Apple macOS Big Sur <11.6.8
Apple / macOS
|
Big Sur <11.6.8 | ||
|
Apple macOS Monterey <12.5
Apple / macOS
|
Monterey <12.5 |
References
6 references
{
"document": {
"aggregate_severity": {
"text": "kritisch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer aus dem angrenzenden Netzwerk oder ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern, Sicherheitsma\u00dfnahmen zu umgehen, beliebigen Code auszuf\u00fchren, Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, Informationen falsch darzustellen und einen Cross-Site-Scripting-Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0778 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0778.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0778 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0778"
},
{
"category": "external",
"summary": "Apple Security Advisroy vom 2022-07-20",
"url": "https://support.apple.com/en-us/HT213343"
},
{
"category": "external",
"summary": "Apple Security Advisroy vom 2022-07-20",
"url": "https://support.apple.com/en-us/HT213344"
},
{
"category": "external",
"summary": "Apple Security Advisroy vom 2022-07-20",
"url": "https://support.apple.com/en-us/HT213345"
},
{
"category": "external",
"summary": "Known Exploited Vulnerabilities Catalog vom 2025-10-20",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"source_lang": "en-US",
"title": "Apple macOS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-10-20T22:00:00.000+00:00",
"generator": {
"date": "2025-10-21T08:28:29.099+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2022-0778",
"initial_release_date": "2022-07-20T22:00:00.000+00:00",
"revision_history": [
{
"date": "2022-07-20T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2022-07-21T22:00:00.000+00:00",
"number": "2",
"summary": "Referenz erg\u00e4nzt"
},
{
"date": "2022-09-20T22:00:00.000+00:00",
"number": "3",
"summary": "CVE Nummern CVE-2022-32861, CVE-2022-32863, CVE-2022-32880 erg\u00e4nzt"
},
{
"date": "2022-10-06T22:00:00.000+00:00",
"number": "4",
"summary": "CVE erg\u00e4nzt"
},
{
"date": "2023-06-21T22:00:00.000+00:00",
"number": "5",
"summary": "CVE-2022-32885, CVE-2022-32948, CVE-2022-42805, CVE-2022-48503, CVE-2022-32860 erg\u00e4nzt"
},
{
"date": "2025-10-20T22:00:00.000+00:00",
"number": "6",
"summary": "Aktive Ausnutzung gemeldet"
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Catalina \u003c2022-005",
"product": {
"name": "Apple macOS Catalina \u003c2022-005",
"product_id": "T023996"
}
},
{
"category": "product_version",
"name": "Catalina 2022-005",
"product": {
"name": "Apple macOS Catalina 2022-005",
"product_id": "T023996-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:catalina__2022-005"
}
}
},
{
"category": "product_version_range",
"name": "Big Sur \u003c11.6.8",
"product": {
"name": "Apple macOS Big Sur \u003c11.6.8",
"product_id": "T023997"
}
},
{
"category": "product_version",
"name": "Big Sur 11.6.8",
"product": {
"name": "Apple macOS Big Sur 11.6.8",
"product_id": "T023997-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:big_sur__11.6.8"
}
}
},
{
"category": "product_version_range",
"name": "Monterey \u003c12.5",
"product": {
"name": "Apple macOS Monterey \u003c12.5",
"product_id": "T023998"
}
},
{
"category": "product_version",
"name": "Monterey 12.5",
"product": {
"name": "Apple macOS Monterey 12.5",
"product_id": "T023998-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:monterey__12.5"
}
}
}
],
"category": "product_name",
"name": "macOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28544",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-28544"
},
{
"cve": "CVE-2021-4136",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4136"
},
{
"cve": "CVE-2021-4166",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4166"
},
{
"cve": "CVE-2021-4173",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4173"
},
{
"cve": "CVE-2021-4187",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4187"
},
{
"cve": "CVE-2021-4192",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4192"
},
{
"cve": "CVE-2021-4193",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-4193"
},
{
"cve": "CVE-2021-46059",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2021-46059"
},
{
"cve": "CVE-2022-0128",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-0128"
},
{
"cve": "CVE-2022-0156",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-0156"
},
{
"cve": "CVE-2022-0158",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-0158"
},
{
"cve": "CVE-2022-2294",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-2294"
},
{
"cve": "CVE-2022-24070",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-24070"
},
{
"cve": "CVE-2022-26704",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-26704"
},
{
"cve": "CVE-2022-26981",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-26981"
},
{
"cve": "CVE-2022-29046",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-29046"
},
{
"cve": "CVE-2022-29048",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-29048"
},
{
"cve": "CVE-2022-32781",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32781"
},
{
"cve": "CVE-2022-32785",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32785"
},
{
"cve": "CVE-2022-32786",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32786"
},
{
"cve": "CVE-2022-32787",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32787"
},
{
"cve": "CVE-2022-32789",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32789"
},
{
"cve": "CVE-2022-32792",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32792"
},
{
"cve": "CVE-2022-32793",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32793"
},
{
"cve": "CVE-2022-32796",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32796"
},
{
"cve": "CVE-2022-32797",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32797"
},
{
"cve": "CVE-2022-32798",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32798"
},
{
"cve": "CVE-2022-32799",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32799"
},
{
"cve": "CVE-2022-32800",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32800"
},
{
"cve": "CVE-2022-32801",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32801"
},
{
"cve": "CVE-2022-32805",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32805"
},
{
"cve": "CVE-2022-32807",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32807"
},
{
"cve": "CVE-2022-32810",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32810"
},
{
"cve": "CVE-2022-32811",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32811"
},
{
"cve": "CVE-2022-32812",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32812"
},
{
"cve": "CVE-2022-32813",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32813"
},
{
"cve": "CVE-2022-32814",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32814"
},
{
"cve": "CVE-2022-32815",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32815"
},
{
"cve": "CVE-2022-32816",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32816"
},
{
"cve": "CVE-2022-32817",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32817"
},
{
"cve": "CVE-2022-32818",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32818"
},
{
"cve": "CVE-2022-32819",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32819"
},
{
"cve": "CVE-2022-32820",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32820"
},
{
"cve": "CVE-2022-32821",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32821"
},
{
"cve": "CVE-2022-32823",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32823"
},
{
"cve": "CVE-2022-32825",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32825"
},
{
"cve": "CVE-2022-32826",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32826"
},
{
"cve": "CVE-2022-32828",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32828"
},
{
"cve": "CVE-2022-32829",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32829"
},
{
"cve": "CVE-2022-32831",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32831"
},
{
"cve": "CVE-2022-32832",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32832"
},
{
"cve": "CVE-2022-32834",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32834"
},
{
"cve": "CVE-2022-32837",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32837"
},
{
"cve": "CVE-2022-32838",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32838"
},
{
"cve": "CVE-2022-32839",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32839"
},
{
"cve": "CVE-2022-32840",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32840"
},
{
"cve": "CVE-2022-32841",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32841"
},
{
"cve": "CVE-2022-32842",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32842"
},
{
"cve": "CVE-2022-32843",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32843"
},
{
"cve": "CVE-2022-32845",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32845"
},
{
"cve": "CVE-2022-32847",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32847"
},
{
"cve": "CVE-2022-32848",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32848"
},
{
"cve": "CVE-2022-32849",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32849"
},
{
"cve": "CVE-2022-32851",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32851"
},
{
"cve": "CVE-2022-32852",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32852"
},
{
"cve": "CVE-2022-32853",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32853"
},
{
"cve": "CVE-2022-32857",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32857"
},
{
"cve": "CVE-2022-32860",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32860"
},
{
"cve": "CVE-2022-32861",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32861"
},
{
"cve": "CVE-2022-32863",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32863"
},
{
"cve": "CVE-2022-32880",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32880"
},
{
"cve": "CVE-2022-32885",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32885"
},
{
"cve": "CVE-2022-32910",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32910"
},
{
"cve": "CVE-2022-32948",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-32948"
},
{
"cve": "CVE-2022-42805",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-42805"
},
{
"cve": "CVE-2022-48503",
"product_status": {
"known_affected": [
"T023996",
"T023997",
"T023998"
]
},
"release_date": "2022-07-20T22:00:00.000+00:00",
"title": "CVE-2022-48503"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…