CVE-2022-22644
CVE-2022-22644
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
18 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A privacy issue existed in the handling of Contact cards. This was addressed with improved state management. This issue is fixed in macOS Monterey 12.3. A malicious application may be able to access information about a user's contacts.
Affected products
Apple · macOSReferences
https://support.apple.com/en-us/HT213183