Details of VAR-202209-1570

ID

VAR-202209-1570

CVE

CVE-2022-32782

TITLE

apple's macOS Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-018484

DESCRIPTION

This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4. An app with root privileges may be able to access private information. apple's macOS Exists in unspecified vulnerabilities.Information may be obtained

Trust: 1.71

sources: NVD: CVE-2022-32782 // JVNDB: JVNDB-2022-018484 // VULHUB: VHN-424871

AFFECTED PRODUCTS

vendor:	apple	model:	macos	scope:	gte	version:	12.0	Trust: 1.0
vendor:	apple	model:	macos	scope:	lt	version:	12.4	Trust: 1.0
vendor:	アップル	model:	macos	scope:	eq	version:	12.0 that's all 12.4	Trust: 0.8
vendor:	アップル	model:	macos	scope:	eq	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-018484 // NVD: CVE-2022-32782

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-32782
value:	MEDIUM
Trust: 1.0
134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2022-32782
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2022-32782
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202209-2449
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2022-32782
baseSeverity:	MEDIUM
baseScore:	4.4
vectorString:	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	0.8
impactScore:	3.6
version:	3.1
Trust: 2.0
NVD:	CVE-2022-32782
baseSeverity:	MEDIUM
baseScore:	4.4
vectorString:	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-018484 // CNNVD: CNNVD-202209-2449 // NVD: CVE-2022-32782 // NVD: CVE-2022-32782

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-269	Trust: 1.0
problemtype:	Lack of information (CWE-noinfo) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2022-018484 // NVD: CVE-2022-32782

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202209-2449

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202209-2449

PATCH

title:	HT213257 Apple Security update	url:	https://support.apple.com/en-us/HT213257	Trust: 0.8
title:	Apple macOS Monterey Security vulnerabilities	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=209428	Trust: 0.6

sources: JVNDB: JVNDB-2022-018484 // CNNVD: CNNVD-202209-2449

EXTERNAL IDS

db:	NVD	id:	CVE-2022-32782	Trust: 3.3
db:	JVNDB	id:	JVNDB-2022-018484	Trust: 0.8
db:	CNNVD	id:	CNNVD-202209-2449	Trust: 0.6
db:	VULHUB	id:	VHN-424871	Trust: 0.1

sources: VULHUB: VHN-424871 // JVNDB: JVNDB-2022-018484 // CNNVD: CNNVD-202209-2449 // NVD: CVE-2022-32782

REFERENCES

url:	https://support.apple.com/en-us/ht213257	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32782	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2022-32782/	Trust: 0.6

sources: VULHUB: VHN-424871 // JVNDB: JVNDB-2022-018484 // CNNVD: CNNVD-202209-2449 // NVD: CVE-2022-32782

SOURCES

db:	VULHUB	id:	VHN-424871
db:	JVNDB	id:	JVNDB-2022-018484
db:	CNNVD	id:	CNNVD-202209-2449
db:	NVD	id:	CVE-2022-32782

LAST UPDATE DATE

2025-05-22T22:44:49.539000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-424871	date:	2022-09-28T00:00:00
db:	JVNDB	id:	JVNDB-2022-018484	date:	2023-10-20T03:03:00
db:	CNNVD	id:	CNNVD-202209-2449	date:	2022-09-29T00:00:00
db:	NVD	id:	CVE-2022-32782	date:	2025-05-22T16:15:52.400

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-424871	date:	2022-09-23T00:00:00
db:	JVNDB	id:	JVNDB-2022-018484	date:	2023-10-20T00:00:00
db:	CNNVD	id:	CNNVD-202209-2449	date:	2022-09-23T00:00:00
db:	NVD	id:	CVE-2022-32782	date:	2022-09-23T19:15:12.087