Sign-up

ID

VAR-202302-2151


CVE

CVE-2022-46704


TITLE

apple's  macOS  Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2022-020465

DESCRIPTION

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to modify protected parts of the file system. apple's macOS Exists in unspecified vulnerabilities.Information may be tampered with

Trust: 1.8

sources: NVD: CVE-2022-46704 // JVNDB: JVNDB-2022-020465 // VULHUB: VHN-447278 // VULMON: CVE-2022-46704

AFFECTED PRODUCTS

vendor:applemodel:macosscope:ltversion:11.7.2

Trust: 1.0

vendor:applemodel:macosscope:gteversion:12.0.0

Trust: 1.0

vendor:applemodel:macosscope:ltversion:12.6.2

Trust: 1.0

vendor:applemodel:macosscope:eqversion:13.0

Trust: 1.0

vendor:applemodel:macosscope:gteversion:11.0

Trust: 1.0

vendor:アップルmodel:macosscope:eqversion:13.0

Trust: 0.8

vendor:アップルmodel:macosscope:eqversion:11.0 that's all 11.7.2

Trust: 0.8

vendor:アップルmodel:macosscope:eqversion: -

Trust: 0.8

vendor:アップルmodel:macosscope:eqversion:12.0.0 that's all 12.6.2

Trust: 0.8

sources: JVNDB: JVNDB-2022-020465 // NVD: CVE-2022-46704

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2022-46704
value: MEDIUM

Trust: 1.0

NVD: CVE-2022-46704
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202302-2170
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2022-46704
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2022-46704
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2022-020465 // CNNVD: CNNVD-202302-2170 // NVD: CVE-2022-46704

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:Lack of information (CWE-noinfo) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2022-020465 // NVD: CVE-2022-46704

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202302-2170

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202302-2170

PATCH

title:HT213533 Apple  Security updateurl:https://support.apple.com/en-us/HT213532

Trust: 0.8

title:Apple macOS Security vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=228169

Trust: 0.6

sources: JVNDB: JVNDB-2022-020465 // CNNVD: CNNVD-202302-2170

EXTERNAL IDS

db:NVDid:CVE-2022-46704

Trust: 3.4

db:JVNDBid:JVNDB-2022-020465

Trust: 0.8

db:CNNVDid:CNNVD-202302-2170

Trust: 0.6

db:VULHUBid:VHN-447278

Trust: 0.1

db:VULMONid:CVE-2022-46704

Trust: 0.1

sources: VULHUB: VHN-447278 // VULMON: CVE-2022-46704 // JVNDB: JVNDB-2022-020465 // CNNVD: CNNVD-202302-2170 // NVD: CVE-2022-46704

REFERENCES

url:https://support.apple.com/en-us/ht213532

Trust: 1.8

url:https://support.apple.com/en-us/ht213533

Trust: 1.8

url:https://support.apple.com/en-us/ht213534

Trust: 1.8

url:https://nvd.nist.gov/vuln/detail/cve-2022-46704

Trust: 0.8

url:https://cxsecurity.com/cveshow/cve-2022-46704/

Trust: 0.6

url:https://nvd.nist.gov

Trust: 0.1

sources: VULHUB: VHN-447278 // VULMON: CVE-2022-46704 // JVNDB: JVNDB-2022-020465 // CNNVD: CNNVD-202302-2170 // NVD: CVE-2022-46704

SOURCES

db:VULHUBid:VHN-447278
db:VULMONid:CVE-2022-46704
db:JVNDBid:JVNDB-2022-020465
db:CNNVDid:CNNVD-202302-2170
db:NVDid:CVE-2022-46704

LAST UPDATE DATE

2024-08-14T14:30:40.404000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-447278date:2023-03-08T00:00:00
db:VULMONid:CVE-2022-46704date:2023-02-27T00:00:00
db:JVNDBid:JVNDB-2022-020465date:2023-11-02T02:30:00
db:CNNVDid:CNNVD-202302-2170date:2023-03-09T00:00:00
db:NVDid:CVE-2022-46704date:2023-03-08T23:28:44.633

SOURCES RELEASE DATE

db:VULHUBid:VHN-447278date:2023-02-27T00:00:00
db:VULMONid:CVE-2022-46704date:2023-02-27T00:00:00
db:JVNDBid:JVNDB-2022-020465date:2023-11-02T00:00:00
db:CNNVDid:CNNVD-202302-2170date:2023-02-27T00:00:00
db:NVDid:CVE-2022-46704date:2023-02-27T20:15:12.747