Vulnerability: Symlink Handling Vulnerability Allows Unauthorized Modification of System Files

Vulnerability: Symlink Handling Vulnerability Allows Unauthorized Modification of System Files

CVE-2022-26688 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

An issue in the handling of symlinks was addressed with improved validation. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. A malicious app with root privileges may be able to modify the contents of system files.

Learn more about our Cis Benchmark Audit For Apple Macos.