Lucene search
HistoryAug 14, 2023 - 11:15 p.m.
CVE-2022-32876
macos ventura 13
logic issue
unauthorized access
hidden photos album
authentication
CVSS3
3.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
2.9
Confidence
High
EPSS
0
Percentile
9.0%
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13. A shortcut may be able to view the hidden photos album without authentication.
Affected configurations
Node
applemacosRange≤9.0
ORapplemacosRange11.0–13.0
References
Related
prion
prion
Authentication flaw
2023-08-14 23:15:00
cvelist
cvelist
CVE-2022-32876
2023-08-14 22:40:41
cve
cve
CVE-2022-32876
2023-08-14 23:15:10
apple
apple
About the security content of macOS Ventura 13
2022-10-24 00:00:00
CVSS3
3.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
2.9
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2022-32876