CVE-2022-26704

Published: May 26, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A validation issue existed in the handling of symlinks and was addressed with improved validation of symlinks. This issue is fixed in macOS Monterey 12.4. An app may be able to gain elevated privileges.

Vendor	Product	Versions
Apple	macOS	affected `unspecified - < 12.4`

References

https://support.apple.com/en-us/HT213257

x_refsource_MISC

https://support.apple.com/kb/HT213343

x_refsource_CONFIRM

https://support.apple.com/kb/HT213344

x_refsource_CONFIRM

20220721 APPLE-SA-2022-07-20-4 Security Update 2022-005 Catalina

mailing-list

x_refsource_FULLDISC

20220721 APPLE-SA-2022-07-20-3 macOS Big Sur 11.6.8

mailing-list

x_refsource_FULLDISC

https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0032/MNDT-2022-0032.md

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-26704

Description

Affected Products

References