CVE-2022-32857

This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A user in a privileged network position can track a user’s activity.

Published: Aug 24, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-32857
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Vulnerability Database

289,599

CVE-2022-32857

Software	From	Fixed in
apple / macos	-	10.15.7
apple / mac_os_x	10.15.7-security_update_2020-001	10.15.7-security_update_2020-001.x
apple / mac_os_x	10.15.7-security_update_2021-001	10.15.7-security_update_2021-001.x
apple / mac_os_x	10.15.7-security_update_2021-002	10.15.7-security_update_2021-002.x
apple / mac_os_x	10.15.7-security_update_2021-003	10.15.7-security_update_2021-003.x
apple / mac_os_x	10.15.7-security_update_2021-004	10.15.7-security_update_2021-004.x
apple / mac_os_x	10.15.7-security_update_2021-005	10.15.7-security_update_2021-005.x
apple / mac_os_x	10.15.7-security_update_2021-006	10.15.7-security_update_2021-006.x
apple / mac_os_x	10.15.7-security_update_2021-008	10.15.7-security_update_2021-008.x
apple / mac_os_x	10.15.7-security_update_2021-007	10.15.7-security_update_2021-007.x
apple / macos	10.15.7	10.15.7.x
apple / mac_os_x	10.15.7-security_update_2022-002	10.15.7-security_update_2022-002.x
apple / mac_os_x	10.15.7-security_update_2022-001	10.15.7-security_update_2022-001.x
apple / mac_os_x	10.15.7-security_update_2022-003	10.15.7-security_update_2022-003.x
apple / macos	10.15.7-security_update_2022-004	10.15.7-security_update_2022-004.x
apple / macos	11.0	11.6.8
apple / macos	12.0	12.5
apple / iphone_os	-	15.6
apple / ipados	-	15.6
apple / watchos	-	8.7
apple / tvos	-	15.6