Lucene search

[email protected]CVE-2022-46724

HistoryAug 14, 2023 - 11:15 p.m.

CVE-2022-46724

2023-08-1423:15:10

[email protected]

web.nvd.nist.gov

cve-2022-46724

ios 16.4

ipados 16.4

security

physical access

image

magnifier

2.4 Low

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

2.5 Low

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.9%

JSON

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 16.4 and iPadOS 16.4. A person with physical access to an iOS device may be able to view the last image used in Magnifier from the lock screen.

Affected configurations

Vulners

NVD

Node

appleiphone_osRange<16.4

appleipad_osRange<16.4

VendorProductVersionCPE
appleiphone_os*cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
appleipad_os*cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	iphone_os	*	cpe:2.3:o:apple:iphone_os::::::::
apple	ipad_os	*	cpe:2.3:o:apple:ipad_os::::::::

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "iOS and iPadOS",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "16.4",
        "versionType": "custom"
      }
    ]
  }
]

References

support.apple.com/en-us/HT213676

2.4 Low

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

2.5 Low

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.9%

JSON

Related for CVE-2022-46724

cvelist1 nvd1 prion1 apple1