nvd-json-data-feeds/CVE-2022/CVE-2022-328xx/CVE-2022-32845.json

{
  "id": "CVE-2022-32845",
  "sourceIdentifier": "product-security@apple.com",
  "published": "2022-09-23T19:15:13.573",
  "lastModified": "2023-01-09T16:41:59.350",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "This issue was addressed with improved checks. This issue is fixed in watchOS 8.7, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to break out of its sandbox."
    },
    {
      "lang": "es",
      "value": "Se abord\u00f3 este problema con comprobaciones mejoradas. Este problema se ha solucionado en watchOS 8.7, iOS 15.6 y iPadOS 15.6, macOS Monterey 12.5. Una app puede salir de su sandbox."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "CHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 10.0,
          "baseSeverity": "CRITICAL"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.0
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
              "versionEndExcluding": "15.6",
              "matchCriteriaId": "F5E4F87A-8003-43EB-99F7-35C82AEA4DC0"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
              "versionEndExcluding": "15.6",
              "matchCriteriaId": "B6FA9FE3-1891-405C-B191-04CAB84ADD46"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "12.0",
              "versionEndExcluding": "12.5",
              "matchCriteriaId": "BFABC0C7-944C-4B46-A985-8B4F8BF93F54"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
              "versionEndExcluding": "8.7",
              "matchCriteriaId": "8EB2AF3C-B2A0-41AD-9C3E-14B220620FF0"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://support.apple.com/en-us/HT213340",
      "source": "product-security@apple.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://support.apple.com/en-us/HT213345",
      "source": "product-security@apple.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://support.apple.com/en-us/HT213346",
      "source": "product-security@apple.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}