Published: 18/03/2022 Updated: 08/08/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

This issue was addressed with a new entitlement. This issue is fixed in macOS Monterey 12.3. An app may be able to spoof system notifications and UI.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple macos

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security updates page Apple security documents reference vulnerabilities by CVE-ID&nbsp ...

CoreFollowUp phishing attack on macOS

CVE-2022-22660: CoreFollowUp phishing attack on macOS This project is the proof of concept detailing the macOS bug that would allow processes to perform a very effective phishing attack against users It is only fully effective when running on macOS versions before 113 The full writeup can be read on my blog Note: this is provided for educational purposes only and should onl

NVD-CWE-Other https://support.apple.com/en-us/HT213183 https://nvd.nist.gov https://github.com/insidegui/CoreFollowUpAttack https://support.apple.com/kb/HT213183

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-22660

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect