CVE-2022-46710

Summary

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Location data may be shared via iCloud links even if Location metadata is disabled via the Share Sheet.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 13.1affected
AppleiOS and iPadOSunspecified < 16.2affected

Weaknesses

  • Location data may be shared via iCloud links even if Location metadata is disabled via the Share Sheet

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References