CVE-2022-22671
CVE-2022-22671
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
18 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An authentication issue was addressed with improved state management. This issue is fixed in iOS 15.4 and iPadOS 15.4. A person with physical access to an iOS device may be able to access photos from the lock screen.
Affected products
Apple · iOS and iPadOSReferences
https://support.apple.com/en-us/HT213182