CVE-2022-46718
MEDIUM EXPLOITEDiPadOS < 15.7.2 - Unauthorized Sensitive Location Information Access
Title source: llmExploitation Summary
CVE-2022-46718 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including biscuitehh.
AI-analyzed exploit summary This repository contains a writeup and documentation for the 'Dynamic' library, which facilitates accessing private/hidden Objective-C APIs in Swift. It is not an exploit PoC but rather a utility library for dynamic method invocation.
Description
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to read sensitive location information
Exploits (1)
This repository contains a writeup and documentation for the 'Dynamic' library, which facilitates accessing private/hidden Objective-C APIs in Swift. It is not an exploit PoC but rather a utility library for dynamic method invocation.
References (4)
Scores
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N