CVE-2022-26694

High

9.1/10

Summary

This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.4. A plug-in may be able to inherit the application's permissions and access user data.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: NONE

References

Advisory Timeline

Published May 26, 2022

CVE-2022-26694

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS