Vulnerability Description
An access issue was addressed with improvements to the sandbox. This issue is fixed in macOS Monterey 12.3, iOS 15.4 and iPadOS 15.4. An app may be able to leak sensitive user information.
CVSS Score
5.5
MEDIUM
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Ipados | >= 15.0, < 15.4 |
| Apple | Iphone Os | >= 15.0, < 15.4 |
| Apple | Macos | >= 12.0.0, < 12.3 |
References
- https://support.apple.com/en-us/HT213182Release NotesVendor Advisory
- https://support.apple.com/en-us/HT213183Release NotesVendor Advisory
- https://support.apple.com/en-us/HT213182Release NotesVendor Advisory
- https://support.apple.com/en-us/HT213183Release NotesVendor Advisory
FAQ
What is CVE-2022-22655?
CVE-2022-22655 is a vulnerability with a CVSS score of 5.5 (MEDIUM). An access issue was addressed with improvements to the sandbox. This issue is fixed in macOS Monterey 12.3, iOS 15.4 and iPadOS 15.4. An app may be able to leak sensitive user information.
How severe is CVE-2022-22655?
CVE-2022-22655 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-22655?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Ipados, Apple Iphone Os, Apple Macos.