CVE-2022-46703

EUVD-2022-49492
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CISA-ADPADP
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 16.2
appleipados
15.0 ≤
𝑥
< 15.7.2
appleiphone_os
𝑥
< 16.2
appleiphone_os
15.0 ≤
𝑥
< 15.7.2
applemacos
𝑥
< 13.1
𝑥
= Vulnerable software versions
References
https://support.apple.com/en-us/HT213530
https://support.apple.com/en-us/HT213531
https://support.apple.com/en-us/HT213532
https://support.apple.com/kb/HT213533
https://support.apple.com/kb/HT213536
https://support.apple.com/en-us/HT213530
https://support.apple.com/en-us/HT213531
https://support.apple.com/en-us/HT213532
https://support.apple.com/kb/HT213533
https://support.apple.com/kb/HT213536