PT-2022-21574 · Apple · Ios+6
Yiğit Can Yilmaz
·
Published
2022-09-12
·
Updated
2022-11-03
·
CVE-2022-32913
CVSS v3.1
3.3
Low
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
macOS Big Sur versions prior to 11.7
macOS Monterey versions prior to 12.6
macOS Ventura version 13 and earlier is not accurate since 13 is a fixed version, so it should be:
macOS Ventura versions prior to 13
iOS versions prior to 16
watchOS versions prior to 9
tvOS versions prior to 16
Description
The issue allows a sandboxed app to determine which app is currently using the camera. This was addressed with additional restrictions on the observability of app states.
Recommendations
For macOS Big Sur, update to version 11.7 or later.
For macOS Monterey, update to version 12.6 or later.
For macOS Ventura, update to version 13 or later.
For iOS, update to version 16 or later.
For watchOS, update to version 9 or later.
For tvOS, update to version 16 or later.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos
Ios
Macos Big Sur
Macos Monterey
Macos Ventura
Tvos
Watchos