{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-13T06:34:55.306","vulnerabilities":[{"cve":{"id":"CVE-2022-26704","sourceIdentifier":"product-security@apple.com","published":"2022-05-26T19:15:08.143","lastModified":"2024-11-21T06:54:21.147","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A validation issue existed in the handling of symlinks and was addressed with improved validation of symlinks. This issue is fixed in macOS Monterey 12.4. An app may be able to gain elevated privileges."},{"lang":"es","value":"Se presentaba un problema de comprobación en el manejo de los enlaces simbólicos y se abordó con una comprobación de los enlaces simbólicos mejorada. Este problema es corregido en macOS Monterey versión 12.4. Una aplicación puede ser capaz de alcanzar altos privilegios"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-59"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*","versionStartIncluding":"10.15","versionEndExcluding":"10.15.7","matchCriteriaId":"DB8A73F8-3074-4B32-B9F6-343B6B1988C5"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*","matchCriteriaId":"A654B8A2-FC30-4171-B0BB-366CD7ED4B6A"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*","matchCriteriaId":"F12CC8B5-C1EB-419E-8496-B9A3864656AD"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*","matchCriteriaId":"F1F4BF7F-90D4-4668-B4E6-B06F4070F448"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-005:*:*:*:*:*:*","matchCriteriaId":"7FD7176C-F4D1-43A7-9E49-BA92CA0D9980"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-007:*:*:*:*:*:*","matchCriteriaId":"2703DE0B-8A9E-4A9D-9AE8-028E22BF47CA"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*","matchCriteriaId":"0F441A43-1669-478D-9EC8-E96882DE4F9F"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*","matchCriteriaId":"D425C653-37A2-448C-BF2F-B684ADB08A26"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*","matchCriteriaId":"A54D63B7-B92B-47C3-B1C5-9892E5873A98"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*","matchCriteriaId":"3456176F-9185-4EE2-A8CE-3D989D674AB7"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-005:*:*:*:*:*:*","matchCriteriaId":"D337EE21-2F00-484D-9285-F2B0248D7A19"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-006:*:*:*:*:*:*","matchCriteriaId":"012052B5-9AA7-4FD3-9C80-5F615330039D"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-007:*:*:*:*:*:*","matchCriteriaId":"50F21A3C-0AC3-48C5-A4F8-5A7B478875B4"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-008:*:*:*:*:*:*","matchCriteriaId":"8E974DC6-F7D9-4389-9AF9-863F6E419CE6"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-001:*:*:*:*:*:*","matchCriteriaId":"156A6382-2BD3-4882-90B2-8E7CF6659E17"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-002:*:*:*:*:*:*","matchCriteriaId":"20A2FDB2-6712-406A-9896-C0B44508B07D"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-003:*:*:*:*:*:*","matchCriteriaId":"49F537A0-DC42-4176-B22F-C80D179DD99D"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-004:*:*:*:*:*:*","matchCriteriaId":"1E463183-7E29-464F-B459-F3E1D62501FC"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndExcluding":"11.6.8","matchCriteriaId":"21572D24-45CE-4FF4-8AFD-E13E1FE853B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*","versionStartIncluding":"12.0.0","versionEndExcluding":"12.4","matchCriteriaId":"56A8A170-44A7-4334-88B0-CB4413E28E53"}]}]}],"references":[{"url":"http://seclists.org/fulldisclosure/2022/Jul/13","source":"product-security@apple.com","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2022/Jul/14","source":"product-security@apple.com","tags":["Mailing List","Third Party Advisory"]},{"url":"https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0032/MNDT-2022-0032.md","source":"product-security@apple.com","tags":["Technical Description","Third Party Advisory"]},{"url":"https://support.apple.com/en-us/HT213257","source":"product-security@apple.com","tags":["Release Notes","Vendor Advisory"]},{"url":"https://support.apple.com/kb/HT213343","source":"product-security@apple.com","tags":["Mailing List"]},{"url":"https://support.apple.com/kb/HT213344","source":"product-security@apple.com","tags":["Vendor Advisory"]},{"url":"http://seclists.org/fulldisclosure/2022/Jul/13","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"http://seclists.org/fulldisclosure/2022/Jul/14","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List","Third Party Advisory"]},{"url":"https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0032/MNDT-2022-0032.md","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Technical Description","Third Party Advisory"]},{"url":"https://support.apple.com/en-us/HT213257","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes","Vendor Advisory"]},{"url":"https://support.apple.com/kb/HT213343","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mailing List"]},{"url":"https://support.apple.com/kb/HT213344","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}