CVE-2022-22646: Medium severity macos vulnerability

Q: What is CVE-2022-22646?

CVE-2022-22646 is a vulnerability in PackageKit that was addressed by removing the vulnerable code.

Q: How was CVE-2022-22646 fixed?

CVE-2022-22646 was fixed in macOS Monterey 12.2 by removing the vulnerable code.

Q: What is the severity of CVE-2022-22646?

CVE-2022-22646 has a severity rating of 5.5 (medium).

Q: Where can I find more information about CVE-2022-22646?

You can find more information about CVE-2022-22646 at the following reference: [link](https://support.apple.com/en-us/HT213054).

Published Jan 26, 2022

Updated

PackageKit. This issue was addressed by removing the vulnerable code.

Other sources

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.2. A malicious application may be able to modify protected parts of the file system.

Credit

Mickey Jin@@patch1t, Mickey Jin@@patch1t(Trend Micro)

Affected Software

2 affected componentsFixes available

macOS<12.2

12.2

macOS>=12.0.0<12.2

Event History

Aug 14, 2023

CVE Published

via MITRE·10:40 PM

Data Sourced

via MITRE·10:40 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT213054

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2022-22646?

CVE-2022-22646 is a vulnerability in PackageKit that was addressed by removing the vulnerable code.

How was CVE-2022-22646 fixed?

CVE-2022-22646 was fixed in macOS Monterey 12.2 by removing the vulnerable code.

What is the severity of CVE-2022-22646?

CVE-2022-22646 has a severity rating of 5.5 (medium).

How can a malicious application exploit CVE-2022-22646?

A malicious application may be able to modify protected parts of the file system using CVE-2022-22646.

Where can I find more information about CVE-2022-22646?