Lucene search

PRIOn knowledge basePRION:CVE-2022-42849

HistoryDec 15, 2022 - 7:15 p.m.

Design/Logic Flaw

2022-12-1519:15:00

PRIOn knowledge base

www.prio-n.com

access control

api security

privilege elevation

7.2 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.6%

JSON

An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2, watchOS 9.2. A user may be able to elevate privileges.

CPENameOperatorVersion
ipadoslt16.2
iphone_oslt16.2
tvoslt16.2
watchoslt9.2

Name	Operator	Version
ipados	lt	16.2
iphone_os	lt	16.2
tvos	lt	16.2
watchos	lt	9.2

References

seclists.org/fulldisclosure/2022/Dec/20

seclists.org/fulldisclosure/2022/Dec/26

support.apple.com/en-us/HT213530

support.apple.com/en-us/HT213535

support.apple.com/en-us/HT213536