CVE-2022-32881
published 2022-11-01CVE-2022-32881: A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, watchOS 9, macOS Monterey 12.6…
PriorityP422medium5.5CVSS 3.1
AVLACLPRNUIRSUCNIHAN
EPSS
0.12%
31.1th percentile
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, watchOS 9, macOS Monterey 12.6, tvOS 16. An app may be able to modify protected parts of the file system.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | macos | >= 11.0 < 11.7 | 11.7 |
| apple | macos | >= 12.0.0 < 12.6 | 12.6 |
| apple | macos | >= unspecified < 13 | 13 |
| apple | macos | >= unspecified < 16 | 16 |
| apple | macos | >= unspecified < 11.7 | 11.7 |
| apple | macos_big_sur | — | — |
| apple | macos_monterey | — | — |
| apple | macos_ventura | — | — |
| apple | tvos | < 16.0 | 16.0 |
| apple | tvos | — | — |
| apple | watchos | < 9.0 | 9.0 |
| apple | watchos | >= unspecified < 9 | 9 |
| apple | watchos | >= unspecified < 16 | 16 |
| apple | watchos | >= unspecified < 12.6 | 12.6 |
| apple | watchos_9 | — | — |
Apple
CVE-2022-32881: macOS Ventura 13
vendor_apple·2022-10-24·CVSS 5.5
CVE-2022-32881 [MEDIUM] CVE-2022-32881: macOS Ventura 13
Apple Security Update: About the security content of macOS Ventura 13
Product: macOS Ventura
Version: 13
CVE: CVE-2022-32881
Component: Sandbox
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32881: macOS Monterey 12.6
vendor_apple·2022-09-12·CVSS 5.5
CVE-2022-32881 [MEDIUM] CVE-2022-32881: macOS Monterey 12.6
Apple Security Update: About the security content of macOS Monterey 12.6
Product: macOS Monterey
Version: 12.6
CVE: CVE-2022-32881
Component: Sandbox
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32881: macOS Big Sur 11.7
vendor_apple·2022-09-12·CVSS 5.5
CVE-2022-32881 [MEDIUM] CVE-2022-32881: macOS Big Sur 11.7
Apple Security Update: About the security content of macOS Big Sur 11.7
Product: macOS Big Sur
Version: 11.7
CVE: CVE-2022-32881
Component: Sandbox
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32881: iOS 16
vendor_apple·2022-09-12·CVSS 5.5
CVE-2022-32881 [MEDIUM] CVE-2022-32881: iOS 16
Apple Security Update: About the security content of iOS 16
Product: iOS
Version: 16
CVE: CVE-2022-32881
Component: Sandbox
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32881: tvOS 16
vendor_apple·2022-09-12·CVSS 5.5
CVE-2022-32881 [MEDIUM] CVE-2022-32881: tvOS 16
Apple Security Update: About the security content of tvOS 16
Product: tvOS
Version: 16
CVE: CVE-2022-32881
Component: Sandbox
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32881: watchOS 9
vendor_apple·2022-09-12·CVSS 5.5
CVE-2022-32881 [MEDIUM] CVE-2022-32881: watchOS 9
Apple Security Update: About the security content of watchOS 9
Product: watchOS 9
CVE: CVE-2022-32881
Component: Sandbox
Impact: An app may be able to modify protected parts of the file system
Description: A logic issue was addressed with improved restrictions.
VulDB
Apple watchOS File System access control (EUVD-2022-35947)
vuldb·2026-06-05·CVSS 5.5
CVE-2022-32881 [MEDIUM] Apple watchOS File System access control (EUVD-2022-35947)
A vulnerability categorized as critical has been discovered in Apple watchOS. This issue affects some unknown processing of the component File System. The manipulation results in improper access controls.
This vulnerability is identified as CVE-2022-32881. The attack is only possible with local access. There is not any exploit available.
It is advisable to upgrade the affected component.
VulDB
Apple iOS/iPadOS File System access control (EUVD-2022-35947)
vuldb·2026-06-05·CVSS 5.5
CVE-2022-32881 [MEDIUM] Apple iOS/iPadOS File System access control (EUVD-2022-35947)
A vulnerability was found in Apple iOS and iPadOS. It has been rated as critical. This vulnerability affects unknown code of the component File System. The manipulation leads to improper access controls.
This vulnerability is referenced as CVE-2022-32881. The attack can only be performed from a local environment. No exploit is available.
Upgrading the affected component is advised.
VulDB
Apple tvOS File System access control (EUVD-2022-35947)
vuldb·2026-06-05·CVSS 5.5
CVE-2022-32881 [MEDIUM] Apple tvOS File System access control (EUVD-2022-35947)
A vulnerability identified as critical has been detected in Apple tvOS. Impacted is an unknown function of the component File System. This manipulation causes improper access controls.
This vulnerability is tracked as CVE-2022-32881. The attack is restricted to local execution. No exploit exists.
You should upgrade the affected component.
VulDB
Apple macOS Sandbox sandbox (HT213488 / EUVD-2022-35947)
vuldb·2026-06-05·CVSS 5.5
CVE-2022-32881 [MEDIUM] Apple macOS Sandbox sandbox (HT213488 / EUVD-2022-35947)
A vulnerability described as problematic has been identified in Apple macOS. Impacted is an unknown function of the component Sandbox. Executing a manipulation can lead to sandbox issue.
This vulnerability is registered as CVE-2022-32881. The attack needs to be launched locally. No exploit is available.
Upgrading the affected component is recommended.
GHSA
GHSA-mr6c-w33g-2mjj: A logic issue was addressed with improved restrictions
ghsa_unreviewed·2022-11-02
CVE-2022-32881 [MEDIUM] GHSA-mr6c-w33g-2mjj: A logic issue was addressed with improved restrictions
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, watchOS 9, macOS Monterey 12.6, tvOS 16. An app may be able to modify protected parts of the file system.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support.apple.com/en-us/HT213443https://support.apple.com/en-us/HT213444https://support.apple.com/en-us/HT213446https://support.apple.com/en-us/HT213486https://support.apple.com/en-us/HT213487https://support.apple.com/en-us/HT213488https://support.apple.com/en-us/HT213443https://support.apple.com/en-us/HT213444https://support.apple.com/en-us/HT213446https://support.apple.com/en-us/HT213486https://support.apple.com/en-us/HT213487https://support.apple.com/en-us/HT213488
2022-11-01
Published