CVE-2022-46710

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions iCloud Photo Library versions prior to iOS 16.2 iCloud Photo Library versions prior to iPadOS 16.2 iCloud Photo Library versions prior to macOS Ventura 13.1

Description The issue is related to a logic problem that has been addressed with improved checks. It may allow an attacker to disclose protected information. Location data may be shared via iCloud links even if Location metadata is disabled via the Share Sheet.

Recommendations For versions prior to iOS 16.2, update to iOS 16.2 or later. For versions prior to iPadOS 16.2, update to iPadOS 16.2 or later. For versions prior to macOS Ventura 13.1, update to macOS Ventura 13.1 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-841

Related Identifiers

BDU:2024-00681

CVE-2022-46710

Affected Products

Apple Macos

Icloud Photo Library

Ios

Ipados

Macos Ventura

CVE-2022-46710

Weakness Enumeration

Related Identifiers

Affected Products

References · 10