CVE-2022-42860

MEDIUM

Apple Macos < 11.7.1 - Origin Validation Error

Title source: rule

Description

This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Monterey 12.6.1, macOS Big Sur 11.7.1, macOS Ventura 13. An app may be able to modify protected parts of the file system

References (3)

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/HT213488

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/HT213493

[Release Notes, Vendor Advisory] https://support.apple.com/en-us/HT213494

Scores

CVSS v3 5.5

EPSS 0.0002

EPSS Percentile 6.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Classification

CWE

CWE-346

Status published

Affected Products (1)

apple/macos < 11.7.1

Timeline

Published Jun 23, 2023

Tracked Since Feb 18, 2026