← back
CVE-2022-32786

CVE-2022-32786

CVSS 5.5 MEDIUMEPSS 2.6%CWE-20
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 2.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
23 Sep 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An issue in the handling of environment variables was addressed with improved validation. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to modify protected parts of the file system.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Affected products
Apple · macOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.apple.com/en-us/HT213343https://support.apple.com/en-us/HT213344https://support.apple.com/en-us/HT213345