CVE-2022-26703
CVE-2022-26703
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
26 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An authorization issue was addressed with improved state management. This issue is fixed in iOS 15.5 and iPadOS 15.5. A person with physical access to an iOS device may be able to access photos from the lock screen.
Affected products
Apple · iOS and iPadOSReferences
https://support.apple.com/en-us/HT213258