English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.821248
Category:Mac OS X Local Security Checks
Title:Apple Mac OS X Security Update (HT213256)
Summary:Apple Mac OS X is prone to multiple vulnerabilities.
Description:Summary:
Apple Mac OS X is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to,

- Multiple memory corruption issues.

- Multiple issues in apache.

- Multiple out-of-bounds read issues.

- Multiple out-of-bounds write issues.

- Multiple use after free errors.

- Multiple input validation errors.

Vulnerability Impact:
Successful exploitation will allow attackers
to conduct arbitrary code execution, denial of service, privilege escalation
and information disclosure etc.

Affected Software/OS:
Apple Mac OS X Big Sur versions 11.x before
11.6.6.

Solution:
Upgrade to Apple Mac OS X Big Sur version
11.6.6 or later. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2018-25032
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://security.netapp.com/advisory/ntap-20220526-0009/
https://support.apple.com/kb/HT213255
https://support.apple.com/kb/HT213256
https://support.apple.com/kb/HT213257
Debian Security Information: DSA-5111 (Google Search)
https://www.debian.org/security/2022/dsa-5111
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOKNP2L734AEL47NRYGVZIKEFOUBQY5Y/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JZZPTWRYQULAOL3AW7RZJNVZ2UONXCV4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NS2D2GFPFGOJUL4WQ3DUAY7HF4VWQ77F/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DF62MVMH3QUGMBDCB3DY2ERQ6EBHTADB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DCZFIJBJTZ7CL5QXBFKTQ22Q26VINRUF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XOKFMSNQ5D5WGMALBNBXU3GE442V74WU/
http://seclists.org/fulldisclosure/2022/May/38
http://seclists.org/fulldisclosure/2022/May/35
http://seclists.org/fulldisclosure/2022/May/33
https://security.gentoo.org/glsa/202210-42
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/issues/605
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
https://www.oracle.com/security-alerts/cpujul2022.html
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://lists.debian.org/debian-lts-announce/2022/05/msg00008.html
https://lists.debian.org/debian-lts-announce/2022/09/msg00023.html
http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
Common Vulnerability Exposure (CVE) ID: CVE-2021-4136
https://huntr.dev/bounties/5c6b93c1-2d27-4e98-a931-147877b8c938
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3FH2J57GDA2WMBS6J56F6QQRA6BXQQFZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2EY2VFBU3YGGWI5BW4XKT3F37MYGEQUD/
http://seclists.org/fulldisclosure/2022/Mar/29
http://seclists.org/fulldisclosure/2022/Jul/14
https://security.gentoo.org/glsa/202208-32
https://github.com/vim/vim/commit/605ec91e5a7330d61be313637e495fa02a6dc264
http://www.openwall.com/lists/oss-security/2022/01/15/1
Common Vulnerability Exposure (CVE) ID: CVE-2021-4166
https://huntr.dev/bounties/229df5dd-5507-44e9-832c-c70364bdf035
https://github.com/vim/vim/commit/6f98371532fcff911b462d51bc64f2ce8a6ae682
Common Vulnerability Exposure (CVE) ID: CVE-2021-4173
https://huntr.dev/bounties/a1b236b9-89fb-4ccf-9689-ba11b471e766
https://github.com/vim/vim/commit/9c23f9bb5fe435b28245ba8ac65aa0ca6b902c04
Common Vulnerability Exposure (CVE) ID: CVE-2021-4187
https://huntr.dev/bounties/a8bee03a-6e2e-43bf-bee3-4968c5386a2e
https://github.com/vim/vim/commit/4bf1006cae7e87259ccd5219128c3dba75774441
Common Vulnerability Exposure (CVE) ID: CVE-2021-4192
https://huntr.dev/bounties/6dd9cb2e-a940-4093-856e-59b502429f22
https://github.com/vim/vim/commit/4c13e5e6763c6eb36a343a2b8235ea227202e952
https://lists.debian.org/debian-lts-announce/2022/03/msg00018.html
https://lists.debian.org/debian-lts-announce/2022/11/msg00009.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-4193
https://huntr.dev/bounties/92c1940d-8154-473f-84ce-0de43b0c2eb0
https://github.com/vim/vim/commit/94f3192b03ed27474db80b4d3a409e107140738b
Common Vulnerability Exposure (CVE) ID: CVE-2021-44224
https://security.netapp.com/advisory/ntap-20211224-0001/
https://www.tenable.com/security/tns-2022-01
https://www.tenable.com/security/tns-2022-03
Debian Security Information: DSA-5035 (Google Search)
https://www.debian.org/security/2022/dsa-5035
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFSWOH4X77CV7AH7C4RMHUBDWKQDL4YH/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z7H26WJ6TPKNWV3QKY4BHKUKQVUTZJTD/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X73C35MMMZGBVPQQCH7LQZUMYZNQA5FO/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RGWILBORT67SHMSLYSQZG2NMXGCMPUZO/
https://security.gentoo.org/glsa/202208-20
http://httpd.apache.org/security/vulnerabilities_24.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujan2022.html
http://www.openwall.com/lists/oss-security/2021/12/20/3
Common Vulnerability Exposure (CVE) ID: CVE-2021-44790
http://packetstormsecurity.com/files/171631/Apache-2.4.x-Buffer-Overflow.html
http://www.openwall.com/lists/oss-security/2021/12/20/4
Common Vulnerability Exposure (CVE) ID: CVE-2021-45444
Debian Security Information: DSA-5078 (Google Search)
https://www.debian.org/security/2022/dsa-5078
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BWF3EXNBX5SVFDBL4ZFOD4GJBWFUKWN4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2P3LPMGENEHKDWFO4MWMZSZL6G7Y4CV7/
https://vuln.ryotak.me/advisories/63
https://zsh.sourceforge.io/releases.html
https://lists.debian.org/debian-lts-announce/2022/02/msg00020.html
Common Vulnerability Exposure (CVE) ID: CVE-2021-46059
Common Vulnerability Exposure (CVE) ID: CVE-2022-0128
https://huntr.dev/bounties/63f51299-008a-4112-b85b-1e904aadd4ba
https://github.com/vim/vim/commit/d3a117814d6acbf0dca3eff1a7626843b9b3734a
Common Vulnerability Exposure (CVE) ID: CVE-2022-0530
https://security.gentoo.org/glsa/202310-17
20220516 APPLE-SA-2022-05-16-2 macOS Monterey 12.4
20220516 APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6
20220516 APPLE-SA-2022-05-16-4 Security Update 2022-004 Catalina
DSA-5202
https://www.debian.org/security/2022/dsa-5202
[debian-lts-announce] 20220922 [SECURITY] [DLA 3118-1] unzip security update
https://lists.debian.org/debian-lts-announce/2022/09/msg00028.html
https://bugzilla.redhat.com/show_bug.cgi?id=2051395
https://github.com/ByteHackr/unzip_poc
Common Vulnerability Exposure (CVE) ID: CVE-2022-0778
https://cert-portal.siemens.com/productcert/pdf/ssa-712929.pdf
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0002
https://security.netapp.com/advisory/ntap-20220321-0002/
https://security.netapp.com/advisory/ntap-20220429-0005/
https://www.openssl.org/news/secadv/20220315.txt
https://www.tenable.com/security/tns-2022-06
https://www.tenable.com/security/tns-2022-07
https://www.tenable.com/security/tns-2022-08
https://www.tenable.com/security/tns-2022-09
Debian Security Information: DSA-5103 (Google Search)
https://www.debian.org/security/2022/dsa-5103
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W6K3PR542DXWLEFFMFIDMME4CWMHJRMG/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/323SNN6ZX7PRJJWP2BUAFLPUAE42XWLZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GDB3GQVJPXJE7X5C5JN6JAA4XUDWD6E6/
https://security.gentoo.org/glsa/202210-02
http://packetstormsecurity.com/files/167344/OpenSSL-1.0.2-1.1.1-3.0-BN_mod_sqrt-Infinite-Loop.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
Common Vulnerability Exposure (CVE) ID: CVE-2022-22589
https://security.gentoo.org/glsa/202208-39
https://support.apple.com/en-us/HT213053
https://support.apple.com/en-us/HT213054
https://support.apple.com/en-us/HT213057
https://support.apple.com/en-us/HT213058
https://support.apple.com/en-us/HT213059
Common Vulnerability Exposure (CVE) ID: CVE-2022-22663
https://support.apple.com/en-us/HT213182
https://support.apple.com/en-us/HT213183
https://support.apple.com/en-us/HT213255
https://support.apple.com/en-us/HT213256
Common Vulnerability Exposure (CVE) ID: CVE-2022-22665
Common Vulnerability Exposure (CVE) ID: CVE-2022-22674
https://support.apple.com/en-us/HT213220
Common Vulnerability Exposure (CVE) ID: CVE-2022-22675
https://support.apple.com/en-us/HT213219
https://support.apple.com/en-us/HT213253
https://support.apple.com/en-us/HT213254
Common Vulnerability Exposure (CVE) ID: CVE-2022-22719
https://security.netapp.com/advisory/ntap-20220321-0001/
https://httpd.apache.org/security/vulnerabilities_24.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00033.html
http://www.openwall.com/lists/oss-security/2022/03/14/4
Common Vulnerability Exposure (CVE) ID: CVE-2022-22720
http://www.openwall.com/lists/oss-security/2022/03/14/3
Common Vulnerability Exposure (CVE) ID: CVE-2022-22721
http://www.openwall.com/lists/oss-security/2022/03/14/2
Common Vulnerability Exposure (CVE) ID: CVE-2022-23308
https://github.com/GNOME/libxml2/commit/652dd12a858989b14eed4e84e453059cd3ba340e
https://security.netapp.com/advisory/ntap-20220331-0008/
https://support.apple.com/kb/HT213253
https://support.apple.com/kb/HT213254
https://support.apple.com/kb/HT213258
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LA3MWWAYZADWJ5F6JOUBX65UZAMQB7RF/
http://seclists.org/fulldisclosure/2022/May/34
http://seclists.org/fulldisclosure/2022/May/36
http://seclists.org/fulldisclosure/2022/May/37
https://security.gentoo.org/glsa/202210-03
https://gitlab.gnome.org/GNOME/libxml2/-/blob/v2.9.13/NEWS
https://lists.debian.org/debian-lts-announce/2022/04/msg00004.html
Common Vulnerability Exposure (CVE) ID: CVE-2022-26697
https://support.apple.com/en-us/HT213257
Common Vulnerability Exposure (CVE) ID: CVE-2022-26698
Common Vulnerability Exposure (CVE) ID: CVE-2022-26706
https://support.apple.com/en-us/HT213258
Common Vulnerability Exposure (CVE) ID: CVE-2022-26712
Common Vulnerability Exposure (CVE) ID: CVE-2022-26714
Common Vulnerability Exposure (CVE) ID: CVE-2022-26715
Common Vulnerability Exposure (CVE) ID: CVE-2022-26718
Common Vulnerability Exposure (CVE) ID: CVE-2022-26720
Common Vulnerability Exposure (CVE) ID: CVE-2022-26721
Common Vulnerability Exposure (CVE) ID: CVE-2022-26722
Common Vulnerability Exposure (CVE) ID: CVE-2022-26723
Common Vulnerability Exposure (CVE) ID: CVE-2022-26726
Common Vulnerability Exposure (CVE) ID: CVE-2022-26728
Common Vulnerability Exposure (CVE) ID: CVE-2022-26745
Common Vulnerability Exposure (CVE) ID: CVE-2022-26746
Common Vulnerability Exposure (CVE) ID: CVE-2022-26748
Common Vulnerability Exposure (CVE) ID: CVE-2022-26751
https://support.apple.com/en-us/HT213259
Common Vulnerability Exposure (CVE) ID: CVE-2022-26755
Common Vulnerability Exposure (CVE) ID: CVE-2022-26756
Common Vulnerability Exposure (CVE) ID: CVE-2022-26757
http://packetstormsecurity.com/files/167517/XNU-Flow-Divert-Race-Condition-Use-After-Free.html
Common Vulnerability Exposure (CVE) ID: CVE-2022-26761
Common Vulnerability Exposure (CVE) ID: CVE-2022-26763
Common Vulnerability Exposure (CVE) ID: CVE-2022-26766
Common Vulnerability Exposure (CVE) ID: CVE-2022-26767
Common Vulnerability Exposure (CVE) ID: CVE-2022-26768
http://seclists.org/fulldisclosure/2022/Jul/12
Common Vulnerability Exposure (CVE) ID: CVE-2022-26769
Common Vulnerability Exposure (CVE) ID: CVE-2022-26770
Common Vulnerability Exposure (CVE) ID: CVE-2022-26776
Common Vulnerability Exposure (CVE) ID: CVE-2022-22630
CopyrightCopyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.