CVE-2022-32790 - Vulnerability Details

This issue was addressed with improved checks. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, macOS Big Sur 11.6.6, Security Update 2022-004 Catalina. A remote user may be able to cause a denial-of-service.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Apple	Ipados Iphone Os Mac Os X Macos Tvos Watchos

Configuration 1 [-]

OR	cpe:2.3:o:apple:ipados::::::::
	cpe:2.3:o:apple:iphone_os::::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-005::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-006::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-007::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-008::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-001::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-002::::::
	cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2022-003::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos::::::::
	cpe:2.3:o:apple:macos:10.15.7:-::::::
	cpe:2.3:o:apple:tvos::::::::
	cpe:2.3:o:apple:watchos::::::::

No data.

References

Link	Providers
https://support.apple.com/en-us/HT213253
https://support.apple.com/en-us/HT213254
https://support.apple.com/en-us/HT213255
https://support.apple.com/en-us/HT213256
https://support.apple.com/en-us/HT213257
https://support.apple.com/en-us/HT213258

History

Thu, 22 May 2025 20:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-400
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: apple

Published: 2022-09-23T18:59:00.000Z

Updated: 2025-05-22T19:13:30.195Z

Reserved: 2022-06-09T00:00:00.000Z

Link: CVE-2022-32790

Vulnrichment

Updated: 2024-08-03T07:46:44.975Z

NVD

Status : Modified

Published: 2022-09-23T19:15:12.347

Modified: 2025-05-22T20:15:22.887

Link: CVE-2022-32790

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object