Lucene search
AppleCVE-2022-32876HistoryAug 14, 2023 - 11:15 p.m.
CVE-2022-32876
2023-08-1423:15:10
apple
web.nvd.nist.gov
22
cve-2022-32876
macos ventura 13
logic issue
unauthorized access
hidden photos
nvd
CVSS3
3.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
3
Confidence
Low
EPSS
0
Percentile
9.0%
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13. A shortcut may be able to view the hidden photos album without authentication.
Affected configurations
Node
applemacosRange≤9.0
ORapplemacosRange11.0–13.0
CNA Affected
[
{
"vendor": "Apple",
"product": "macOS",
"versions": [
{
"version": "unspecified",
"status": "affected",
"lessThan": "13",
"versionType": "custom"
}
]
}
]References
Related
prion
prion
Authentication flaw
2023-08-14 23:15:00
cvelist
cvelist
CVE-2022-32876
2023-08-14 22:40:41
nvd
nvd
CVE-2022-32876
2023-08-14 23:15:10
apple
apple
About the security content of macOS Ventura 13
2022-10-24 00:00:00
CVSS3
3.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
3
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2022-32876