VDB

CVE-2022-22652

CVE-2022-22652 PUBLISHED CVSS 6.099999904632568 MEDIUM

The GSMA authentication panel could be presented on the lock screen. The issue was resolved by requiring device unlock to interact with the GSMA authentication panel. This issue is fixed in iOS 15.4 and iPadOS 15.4. A person with physical access may be able to view and modify the carrier account information and settings from the lock screen.

EPSS 0.07% · 20.3th percentile

Risk Scores

CVSS 3.1
6.099999904632568
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.07%
20.3th percentile

Affected Products

VendorProductVersions
appleiphone_os0
appleipados0
AppleiOS and iPadOSunspecified

Exploit Intelligence

…and 103 more exploits

Timeline

  • Jun 28, 2021 PoC Published
  • Dec 11, 2021 PoC Published
  • Dec 13, 2021 PoC Published
  • Mar 15, 2022 CVE Published
  • Mar 19, 2022 EPSS Score
  • May 9, 2022 EPSS Score
  • Jun 7, 2022 PoC Published
  • Jun 29, 2022 EPSS Score
  • Aug 20, 2022 EPSS Score
  • Sep 16, 2022 PoC Published
  • Oct 10, 2022 EPSS Score
  • Dec 1, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›