Vulnerability Description
An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. A local attacker may be able to view the previous logged in user’s desktop from the fast user switching screen.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | >= 10.15, < 10.15.7 |
| Apple | Macos | >= 11.6, < 11.6.5 |
Related Weaknesses (CWE)
References
- https://support.apple.com/en-us/HT213183Vendor Advisory
- https://support.apple.com/en-us/HT213184Vendor Advisory
- https://support.apple.com/en-us/HT213185Vendor Advisory
- https://support.apple.com/en-us/HT213183Vendor Advisory
- https://support.apple.com/en-us/HT213184Vendor Advisory
- https://support.apple.com/en-us/HT213185Vendor Advisory
FAQ
What is CVE-2022-22656?
CVE-2022-22656 is a vulnerability with a CVSS score of 3.3 (LOW). An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. A local attacker may be able ...
How severe is CVE-2022-22656?
CVE-2022-22656 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-22656?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Macos.