| Vulnerability Name: | CVE-2022-32881 (CCN-238837) | ||||||||||||
| Assigned: | 2022-10-24 | ||||||||||||
| Published: | 2022-10-24 | ||||||||||||
| Updated: | 2022-11-03 | ||||||||||||
| Summary: | A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, iOS 16, watchOS 9, macOS Monterey 12.6, tvOS 16. An app may be able to modify protected parts of the file system. | ||||||||||||
| CVSS v3 Severity: | 5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N) 4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:C/A:N)
| ||||||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2022-32881 Source: XF Type: UNKNOWN apple-ventura-cve202232881-sec-bypass(238837) Source: MISC Type: Vendor Advisory https://support.apple.com/en-us/HT213443 Source: MISC Type: Vendor Advisory https://support.apple.com/en-us/HT213444 Source: MISC Type: Vendor Advisory https://support.apple.com/en-us/HT213446 Source: MISC Type: Vendor Advisory https://support.apple.com/en-us/HT213486 Source: MISC Type: Vendor Advisory https://support.apple.com/en-us/HT213487 Source: CCN Type: Apple security document HT213488 About the security content of macOS Ventura 13 Source: MISC Type: Vendor Advisory https://support.apple.com/en-us/HT213488 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||