CVE-2023-32422

This issue was addressed by adding additional SQLite logging restrictions. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to bypass Privacy preferences.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
appleCNA
---
---
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
VendorProductVersion
appleipados
𝑥
< 16.5
appleiphone_os
𝑥
< 16.5
applemacos
13.0 ≤
𝑥
< 13.4
appletvos
𝑥
< 16.5
𝑥
= Vulnerable software versions
References
https://support.apple.com/en-us/HT213757
https://support.apple.com/en-us/HT213758
https://support.apple.com/en-us/HT213761
https://support.apple.com/kb/HT213764
https://support.apple.com/kb/HT213844
https://support.apple.com/kb/HT213845
https://support.apple.com/en-us/HT213757
https://support.apple.com/en-us/HT213758
https://support.apple.com/en-us/HT213761
https://support.apple.com/kb/HT213764
https://support.apple.com/kb/HT213844
https://support.apple.com/kb/HT213845