Lucene search
AppleCVE-2022-22655HistoryAug 14, 2023 - 11:15 p.m.
CVE-2022-22655
2023-08-1423:15:09
apple
web.nvd.nist.gov
46
cve-2022-22655
access issue
macos monterey
ios 15.4
ipados 15.4
sandbox improvement
sensitive user information
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
4.2
Confidence
High
EPSS
0.001
Percentile
24.3%
An access issue was addressed with improvements to the sandbox. This issue is fixed in macOS Monterey 12.3, iOS 15.4 and iPadOS 15.4. An app may be able to leak sensitive user information.
Affected configurations
Node
appleipadosRange15.0–15.4
ORappleiphone_osRange15.0–15.4
ORapplemacosRange12.0.0–12.3
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "12.3",
"versionType": "custom"
}
]
},
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "15.4",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2022-22655
2023-08-14 22:40:36
nvd
nvd
CVE-2022-22655
2023-08-14 23:15:09
prion
prion
Design/Logic Flaw
2023-08-14 23:15:00
apple
apple
About the security content of iOS 15.4 and iPadOS 15.4
2022-03-14 00:00:00
About the security content of macOS Monterey 12.3
2022-03-14 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
AI Score
4.2
Confidence
High
EPSS
0.001
Percentile
24.3%
Related for CVE-2022-22655