CVE-2022-32870
published 2022-11-01CVE-2022-32870: A logic issue was addressed with improved state management. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user with physical access to a device…
PriorityP45low2.4CVSS 3.1
AVPACLPRNUINSUCLINAN
EPSS
0.09%
25.5th percentile
A logic issue was addressed with improved state management. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user with physical access to a device may be able to use Siri to obtain some call history information.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 16.0 | 16.0 |
| apple | macos | < 13.0 | 13.0 |
| apple | macos | >= unspecified < 13 | 13 |
| apple | macos | >= unspecified < 16 | 16 |
| apple | macos_ventura | — | — |
| apple | watchos | < 9.0 | 9.0 |
| apple | watchos | >= unspecified < 9 | 9 |
| apple | watchos_9 | — | — |
GHSA
GHSA-qgjm-gpxr-6x7m: A logic issue was addressed with improved state management
ghsa_unreviewed·2022-11-02
CVE-2022-32870 [LOW] CWE-200 GHSA-qgjm-gpxr-6x7m: A logic issue was addressed with improved state management
A logic issue was addressed with improved state management. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user with physical access to a device may be able to use Siri to obtain some call history information.
Apple
CVE-2022-32870: macOS Ventura 13
vendor_apple·2022-10-24·CVSS 2.4
CVE-2022-32870 [LOW] CVE-2022-32870: macOS Ventura 13
Apple Security Update: About the security content of macOS Ventura 13
Product: macOS Ventura
Version: 13
CVE: CVE-2022-32870
Component: Siri
Impact: A user with physical access to a device may be able to use Siri to obtain some call history information
Description: A logic issue was addressed with improved state management.
Apple
CVE-2022-32870: iOS 16
vendor_apple·2022-09-12·CVSS 2.4
CVE-2022-32870 [LOW] CVE-2022-32870: iOS 16
Apple Security Update: About the security content of iOS 16
Product: iOS
Version: 16
CVE: CVE-2022-32870
Component: Siri
Impact: A user with physical access to a device may be able to use Siri to obtain some call history information
Description: A logic issue was addressed with improved state management.
Apple
CVE-2022-32870: watchOS 9
vendor_apple·2022-09-12·CVSS 2.4
CVE-2022-32870 [LOW] CVE-2022-32870: watchOS 9
Apple Security Update: About the security content of watchOS 9
Product: watchOS 9
CVE: CVE-2022-32870
Component: Siri
Impact: A user with physical access to a device may be able to use Siri to obtain some call history information
Description: A logic issue was addressed with improved state management.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-11-01
Published