macOS Finder Information Disclosure Vulnerability
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1. Processing a maliciously crafted file may disclose user information.
This section explains the vulnerability in everyday language, so anyone can understand the risk and impact.
This vulnerability affects Apple's macOS operating system, specifically the Finder application that helps users browse files and folders. When a user opens a specially crafted malicious file, the Finder could accidentally reveal private information stored on their computer that should normally be hidden. This could include personal files, documents, or system information that attackers shouldn't be able to see.
The problem occurs because the Finder doesn't properly manage how it handles certain types of files, potentially exposing information that should remain private.
Affected Products
Remediation
Update to macOS Monterey 12.0.1 or later through System Preferences > Software Update. The update addresses the vulnerability by improving state management in Finder's file handling mechanisms.