vulnerability

OS X update for iCloud Photo Library (CVE-2022-46710)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:M/Au:N/C:C/I:N/A:N)	Nov 1, 2023	Nov 1, 2023	Mar 27, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:N/A:N)

Published

Nov 1, 2023

Added

Nov 1, 2023

Modified

Mar 27, 2026

Description

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Location data may be shared via iCloud links even if Location metadata is disabled via the Share Sheet.

Solution

apple-osx-upgrade-13_1

References

CVE-2022-46710
https://attackerkb.com/topics/CVE-2022-46710
CWE-841
EUVD-EUVD-2022-49499
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-49499
https://support.apple.com/kb/HT213532

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today