CVE-2022-32838

MEDIUM Year: 2022
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-285
View all →

Vulnerability Description

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6. An app may be able to read arbitrary files.

Related Vulnerabilities

CVE-2017-8252

MEDIUM
CVSS:5.5(Medium)

Kernel can inject faults in computations during the execution of TrustZone leading to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electr...

CWE-2852017

CVE-2018-9867

MEDIUM
CVSS:5.5(Medium)

In SonicWall SonicOS, administrators without full permissions can download imported certificates. Occurs when administrators who are not in the SonicWall Administrators user group attempt to download ...

CWE-2852018

CVE-2021-21096

MEDIUM
CVSS:5.5(Medium)

Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. A low-privileged attacker could leverage th...

CWE-2852021

CVE-2021-25382

MEDIUM
CVSS:5.5(Medium)

An improper authorization of using debugging command in Secure Folder prior to SMR Oct-2020 Release 1 allows unauthorized access to contents in Secure Folder via debugging command.

CWE-2852021

CVE-2021-25433

MEDIUM
CVSS:5.5(Medium)

Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL-2021 Release allows untrusted applications to perform factory reset using dbus signal.

CWE-2852021

CVE-2021-25459

MEDIUM
CVSS:5.5(Medium)

An improper access control vulnerability in sspInit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to start BlockchainTZService.

CWE-2852021