Description
A malicious application may cause unexpected changes in memory shared between processes. A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4.
Published: 2026-06-10
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A malicious application can cause unintended changes to memory that is shared between processes, a classic memory corruption flaw. Based on the description, it is inferred that such corruption could alter the state of cooperating processes, leading to data corruption, privilege escalation, or even arbitrary code execution if a process depends on the corrupted data.

Affected Systems

The flaw affects Apple macOS Monterey prior to version 12.4. The vulnerability is addressed in macOS Monterey 12.4, so any installation of Monterey 12.0-12.3 is potentially vulnerable.

Risk and Exploitability

The CVSS score of 7.1 indicates high severity, and since the EPSS score is not available and the vulnerability is not listed in CISA KEV, the known exploitation probability remains unclear. An attacker with the ability to run a malicious application on a system could exploit this flaw locally, potentially gaining control over the affected processes. With no public exploit actively in use and without a KEV designation, the risk is considered moderate, but the severe impact of memory corruption warrants prompt remediation.

Generated by OpenCVE AI on June 11, 2026 at 04:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade macOS to Monterey 12.4 or later to apply the fix
  • Install all subsequent Apple security updates promptly to address related issues
  • Limit execution of untrusted applications and enforce strict process permissions to reduce the surface for memory corruption

Generated by OpenCVE AI on June 11, 2026 at 04:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 20:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple macos
CPEs cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Vendors & Products Apple macos

Thu, 11 Jun 2026 05:15:00 +0000

Type Values Removed Values Added
Title Memory Corruption via Shared Memory in macOS Monterey

Thu, 11 Jun 2026 03:15:00 +0000

Type Values Removed Values Added
Title Memory corruption causing unintended memory changes across shared processes
Weaknesses CWE-122

Thu, 11 Jun 2026 01:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-362
References
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 10 Jun 2026 23:30:00 +0000

Type Values Removed Values Added
Title Memory corruption causing unintended memory changes across shared processes
Weaknesses CWE-122

Wed, 10 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos Monterey
Vendors & Products Apple
Apple macos Monterey

Wed, 10 Jun 2026 21:00:00 +0000

Type Values Removed Values Added
Description A malicious application may cause unexpected changes in memory shared between processes. A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4.
References

Subscriptions

Apple Macos Macos Monterey
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2026-06-11T00:23:14.636Z

Reserved: 2022-03-08T14:13:25.510Z

Link: CVE-2022-26758

cve-icon Vulnrichment

Updated: 2026-06-11T00:21:21.608Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-10T22:16:51.617

Modified: 2026-06-11T19:48:04.153

Link: CVE-2022-26758

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T05:00:06Z

Weaknesses
  • CWE-362

    Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')