CVE-2022-32879Apple Macos vulnerability

7 documents3 sources
Severity
2.4LOWNVD
EPSS
0.1%
top 73.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Apple MacosApple WatchosApple Ipados+6 more
Timeline
PublishedNov 1
Latest updateNov 2

Description

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13, iOS 16, iOS 15.7 and iPadOS 15.7, watchOS 9, tvOS 16. A user with physical access to a device may be able to access contacts from the lock screen.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 0.9 | Impact: 1.4

Affected Packages12 packages

NVDapple/tvos< 16.0
CVEListV5apple/macosunspecified13+2
NVDapple/macos< 13.0
NVDapple/ipados< 15.7

🔴Vulnerability Details

1
GHSA
GHSA-cpp9-j2g6-254x: A logic issue was addressed with improved state management2022-11-02

📋Vendor Advisories

5
Apple
CVE-2022-32879: macOS Ventura 132022-10-24
Apple
CVE-2022-32879: tvOS 162022-09-12
Apple
CVE-2022-32879: iOS 15.7 and iPadOS 15.72022-09-12
Apple
CVE-2022-32879: watchOS 92022-09-12
Apple
CVE-2022-32879: iOS 162022-09-12