Despite issuing an update to address two zero-day vulnerabilities in macOS Monterey, Apple has yet to apply it to the last two macOS versions, reportedly leaving up to 40% of actively used Macs at risk.
According to The Mac Security Blog, Apple has traditionally supported the current and previous two versions of macOS with security updates.
One of the two actively exploited vulnerabilities still specifically targets Big Sur. Bug CVE-2022-22675, concerns AppleAVD, the framework used for audio and video decoding.
Read more at AppleInsider.com