exploitDog

CVE-2023-32417

Опубликовано: 23 июн. 2023

Источник: nvd

CVSS3: 2.4

EPSS Низкий

Описание

This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 9.5. An attacker with physical access to a locked Apple Watch may be able to view user photos or contacts via accessibility features.

Ссылки

https://support.apple.com/en-us/HT213764
Release Notes
Vendor Advisory
https://support.apple.com/kb/HT213758
https://support.apple.com/en-us/HT213764
Release Notes
Vendor Advisory
https://support.apple.com/kb/HT213758

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

Версия до 9.5 (исключая)

EPSS

Процентиль: 21%

0.00069

Низкий

2.4 Low

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-pjqg-7hp6-p4f6

CVSS3: 2.4

github

больше 2 лет назад

This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 9.5. An attacker with physical access to a locked Apple Watch may be able to view user photos or contacts via accessibility features

EPSS

Процентиль: 21%

0.00069

Низкий

2.4 Low

CVSS3

Дефекты

NVD-CWE-noinfo