Lucene search
HistoryNov 01, 2022 - 8:15 p.m.
CVE-2022-32946
cve-2022-32946
ios
ipados
security patch
entitlements
airpods
audio recording
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%
This issue was addressed with improved entitlements. This issue is fixed in iOS 16.1 and iPadOS 16. An app may be able to record audio using a pair of connected AirPods.
Affected configurations
Node
appleiphone_osRange<16.1
ORappleipad_osRange<16.1
CNA Affected
[
{
"vendor": "Apple",
"product": "iOS and iPadOS",
"versions": [
{
"version": "unspecified",
"lessThan": "16.1",
"status": "affected",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2022-32946
2022-11-01 20:15:20
cvelist
cvelist
CVE-2022-32946
2022-11-01 00:00:00
prion
prion
Design/Logic Flaw
2022-11-01 20:15:00
thn
thn
apple
apple
About the security content of iOS 16.1 and iPadOS 16
2022-10-24 00:00:00
About the security content of iOS 16.1 and iPadOS 16
2022-10-24 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.4%
Related for CVE-2022-32946