Lucene search
AppleCVE-2022-32946HistoryNov 01, 2022 - 8:15 p.m.
CVE-2022-32946
2022-11-0120:15:20
apple
web.nvd.nist.gov
72
6
cve-2022-32946
ios
ipados
security patch
entitlements
airpods
audio recording
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
20.2%
This issue was addressed with improved entitlements. This issue is fixed in iOS 16.1 and iPadOS 16. An app may be able to record audio using a pair of connected AirPods.
Affected configurations
Node
appleipadosRange<16.0
ORappleiphone_osRange<16.1
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"lessThan": "16.1",
"status": "affected",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2022-32946
2022-11-01 20:15:20
prion
prion
Design/Logic Flaw
2022-11-01 20:15:00
cvelist
cvelist
CVE-2022-32946
2022-11-01 00:00:00
thn
thn
apple
apple
About the security content of iOS 16.1 and iPadOS 16
2022-10-24 00:00:00
About the security content of iOS 16.1 and iPadOS 16
2022-10-24 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
20.2%
Related for CVE-2022-32946