CVE-2022-32928
published 2022-11-01CVE-2022-32928: A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user in a privileged network position may…
PriorityP426medium5.3CVSS 3.1
AVNACHPRLUINSUCHINAN
EPSS
0.26%
49.3th percentile
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user in a privileged network position may be able to intercept mail credentials.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 16.0 | 16.0 |
| apple | macos | < 13.0 | 13.0 |
| apple | macos | >= unspecified < 13 | 13 |
| apple | macos | >= unspecified < 16 | 16 |
| apple | macos_ventura | — | — |
| apple | watchos | < 9.0 | 9.0 |
| apple | watchos | >= unspecified < 9 | 9 |
| apple | watchos_9 | — | — |
Apple
CVE-2022-32928: macOS Ventura 13
vendor_apple·2022-10-24·CVSS 5.3
CVE-2022-32928 [MEDIUM] CVE-2022-32928: macOS Ventura 13
Apple Security Update: About the security content of macOS Ventura 13
Product: macOS Ventura
Version: 13
CVE: CVE-2022-32928
Component: Exchange
Impact: A user in a privileged network position may be able to intercept mail credentials
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32928: watchOS 9
vendor_apple·2022-09-12·CVSS 5.3
CVE-2022-32928 [MEDIUM] CVE-2022-32928: watchOS 9
Apple Security Update: About the security content of watchOS 9
Product: watchOS 9
CVE: CVE-2022-32928
Component: Exchange
Impact: A user in a privileged network position may be able to intercept mail credentials
Description: A logic issue was addressed with improved restrictions.
Apple
CVE-2022-32928: iOS 16
vendor_apple·2022-09-12·CVSS 5.3
CVE-2022-32928 [MEDIUM] CVE-2022-32928: iOS 16
Apple Security Update: About the security content of iOS 16
Product: iOS
Version: 16
CVE: CVE-2022-32928
Component: Exchange
Impact: A user in a privileged network position may be able to intercept mail credentials
Description: A logic issue was addressed with improved restrictions.
GHSA
GHSA-jjr3-mpqc-7w9v: A logic issue was addressed with improved restrictions
ghsa_unreviewed·2022-11-02
CVE-2022-32928 [MEDIUM] CWE-287 GHSA-jjr3-mpqc-7w9v: A logic issue was addressed with improved restrictions
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user in a privileged network position may be able to intercept mail credentials.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-11-01
Published