PT-2022-21508 · Apple · Ios+1
Csaba Fitzl
+2
·
Published
2022-09-12
·
Updated
2023-08-08
·
CVE-2022-32833
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 16
Description
An issue existed with the file paths used to store website data, potentially allowing an unauthorized user to access browsing history. The issue was resolved by improving how website data is stored and by addressing the issue with improved handling of caches.
Recommendations
For iOS versions prior to 16, update to iOS 16 to resolve the issue. As a temporary workaround, consider restricting access to sensitive website data until the update is applied.
Fix
Insecure Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios