ID

VAR-202212-1619


CVE

CVE-2022-46702


TITLE

apple's  iPadOS  and  iOS  Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-023513

DESCRIPTION

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2. An app may be able to disclose kernel memory. apple's iPadOS and iOS Exists in unspecified vulnerabilities.Information may be obtained

Trust: 1.8

sources: NVD: CVE-2022-46702 // JVNDB: JVNDB-2022-023513 // VULHUB: VHN-447276 // VULMON: CVE-2022-46702

AFFECTED PRODUCTS

vendor:applemodel:iphone osscope:gteversion:16.0

Trust: 1.0

vendor:applemodel:iphone osscope:ltversion:16.2

Trust: 1.0

vendor:applemodel:ipadosscope:gteversion:16.0

Trust: 1.0

vendor:applemodel:ipadosscope:ltversion:16.2

Trust: 1.0

vendor:アップルmodel:iosscope: - version: -

Trust: 0.8

vendor:アップルmodel:ipadosscope:eqversion:16.0 that's all 16.2

Trust: 0.8

sources: JVNDB: JVNDB-2022-023513 // NVD: CVE-2022-46702

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-46702
value: MEDIUM

Trust: 1.0

NVD: CVE-2022-46702
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202212-3019
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2022-46702
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2022-46702
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2022-023513 // CNNVD: CNNVD-202212-3019 // NVD: CVE-2022-46702

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:Lack of information (CWE-noinfo) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2022-023513 // NVD: CVE-2022-46702

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202212-3019

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202212-3019

PATCH

title:HT213530 Apple  Security updateurl:https://support.apple.com/en-us/HT213530

Trust: 0.8

sources: JVNDB: JVNDB-2022-023513

EXTERNAL IDS

db:NVDid:CVE-2022-46702

Trust: 3.4

db:JVNDBid:JVNDB-2022-023513

Trust: 0.8

db:CNNVDid:CNNVD-202212-3019

Trust: 0.6

db:VULHUBid:VHN-447276

Trust: 0.1

db:VULMONid:CVE-2022-46702

Trust: 0.1

sources: VULHUB: VHN-447276 // VULMON: CVE-2022-46702 // JVNDB: JVNDB-2022-023513 // CNNVD: CNNVD-202212-3019 // NVD: CVE-2022-46702

REFERENCES

url:http://seclists.org/fulldisclosure/2022/dec/20

Trust: 2.5

url:https://support.apple.com/en-us/ht213530

Trust: 2.4

url:https://nvd.nist.gov/vuln/detail/cve-2022-46702

Trust: 0.8

url:https://vigilance.fr/vulnerability/apple-ios-macos-multiple-vulnerabilities-of-december-2022-40105

Trust: 0.6

url:https://cxsecurity.com/cveshow/cve-2022-46702/

Trust: 0.6

url:https://nvd.nist.gov

Trust: 0.1

sources: VULHUB: VHN-447276 // VULMON: CVE-2022-46702 // JVNDB: JVNDB-2022-023513 // CNNVD: CNNVD-202212-3019 // NVD: CVE-2022-46702

SOURCES

db:VULHUBid:VHN-447276
db:VULMONid:CVE-2022-46702
db:JVNDBid:JVNDB-2022-023513
db:CNNVDid:CNNVD-202212-3019
db:NVDid:CVE-2022-46702

LAST UPDATE DATE

2024-08-14T15:11:09.849000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-447276date:2023-01-09T00:00:00
db:VULMONid:CVE-2022-46702date:2022-12-15T00:00:00
db:JVNDBid:JVNDB-2022-023513date:2023-11-29T03:02:00
db:CNNVDid:CNNVD-202212-3019date:2022-12-22T00:00:00
db:NVDid:CVE-2022-46702date:2023-01-09T16:45:26.793

SOURCES RELEASE DATE

db:VULHUBid:VHN-447276date:2022-12-15T00:00:00
db:VULMONid:CVE-2022-46702date:2022-12-15T00:00:00
db:JVNDBid:JVNDB-2022-023513date:2023-11-29T00:00:00
db:CNNVDid:CNNVD-202212-3019date:2022-12-13T00:00:00
db:NVDid:CVE-2022-46702date:2022-12-15T19:15:26.830