CVE-2022-32933

Advisory lineage Upstream: 0 Downstream: 11

Downstream

DEBIAN-CVE-2022-32933 DSA-5240-1 DSA-5241-1 RHSA-2023:6535 RHSA-2023:7055 RHSA-2025:10364

Modified

Published: 10 Jun 2024, 19:21

Last modified:18 Mar 2025, 15:24

Vulnerability Summary

Overall Risk (default)

low

21/100

CVSS Score

5.3 MEDIUM

v3.1 (cve.org)

EPSS Score

0.21% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

10 Jun 2024, 19:21

Published

Vulnerability first disclosed

18 Mar 2025, 15:24

Last Modified

Vulnerability information updated

Description

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.5. A website may be able to track the websites a user visited in Safari private browsing mode.

CVSS Metrics

v3.1•MEDIUM•Score: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS Trends

Current EPSS score: 0.21%• Percentile: 43%

Techniques & Countermeasures

CWE-200•Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Affected Systems

apple•macos
≥ unspecified, < 12.5 | < 12.5

References (1)

https://support.apple.com/en-us/HT213345