vulnerability

OS X update for Finder (CVE-2022-32905)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Nov 1, 2022	Nov 29, 2022	Mar 27, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Nov 1, 2022

Added

Nov 29, 2022

Modified

Mar 27, 2026

Description

This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted DMG file may lead to arbitrary code execution with system privileges.

Solution

apple-osx-upgrade-13

References

CVE-2022-32905
https://attackerkb.com/topics/CVE-2022-32905
CWE-59
EUVD-EUVD-2022-35971
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-35971
https://support.apple.com/kb/HT213488

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today