Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-26688

An issue in the handling of symlinks was addressed with improved validation. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. A malicious app with root privileges may be able to modify the contents of system files.

  • Published: May 26, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-26688
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.4
  • AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.9
  • AV:L/AC:L/Au:N/C:N/I:C/A:N

CWEs:

Software From Fixed in
apple / mac_os_x 10.15 10.15.7
apple / mac_os_x 10.15.7-supplemental_update 10.15.7-supplemental_update.x
apple / mac_os_x 10.15.7-security_update_2020-005 10.15.7-security_update_2020-005.x
apple / mac_os_x 10.15.7-security_update_2020-007 10.15.7-security_update_2020-007.x
apple / mac_os_x 10.15.7 10.15.7.x
apple / mac_os_x 10.15.7-security_update_2020-001 10.15.7-security_update_2020-001.x
apple / mac_os_x 10.15.7-security_update_2020 10.15.7-security_update_2020.x
apple / mac_os_x 10.15.7-security_update_2021-001 10.15.7-security_update_2021-001.x
apple / mac_os_x 10.15.7-security_update_2021-002 10.15.7-security_update_2021-002.x
apple / mac_os_x 10.15.7-security_update_2021-003 10.15.7-security_update_2021-003.x
apple / mac_os_x 10.15.7-security_update_2021-006 10.15.7-security_update_2021-006.x
apple / mac_os_x 10.15.7-security_update_2021-008 10.15.7-security_update_2021-008.x
apple / mac_os_x 10.15.7-security_update_2021-007 10.15.7-security_update_2021-007.x
apple / macos 12.0.0 12.3
apple / macos 11.0 11.6.5
apple / mac_os_x 10.15.7-security_update_2022-002 10.15.7-security_update_2022-002.x
apple / mac_os_x 10.15.7-security_update_2022-001 10.15.7-security_update_2022-001.x