CVE-2022-42838

LOW Year: 2022
CVSS v3 Score
3.3
Low
Weakness Type
CWE-672
View all →

Vulnerability Description

An issue with app access to camera data was addressed with improved logic. This issue is fixed in macOS Ventura 13. A camera extension may be able to continue receiving video after the app which activated was closed.

Related Vulnerabilities

CVE-2025-30351

LOW
CVSS:3.5(Low)

Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 10.10.0 and prior to version 11.5.0, a suspended user can use the token generated in session auth m...

CWE-6722025

CVE-2020-15270

MEDIUM
CVSS:4.3(Medium)

Parse Server (npm package parse-server) broadcasts events to all clients without checking if the session token is valid. This allows clients with expired sessions to still receive subscription objects...

CWE-6722020

CVE-2022-27499

MEDIUM
CVSS:4.4(Medium)

Premature release of resource during expected lifetime in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosure via local access.

CWE-6722022

CVE-2019-19480

MEDIUM
CVSS:4.6(Medium)

An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/pkcs15-prkey.c has an incorrect free operation in sc_pkcs15_decode_prkdf_entry.

CWE-6722019

CVE-2020-12043

CRITICAL
CVSS:9.8(Critical)

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when configured for wireless networking the FTP service operating on the WBM remains operational until the WBM is rebooted.

CWE-6722020

CVE-2020-24030

CRITICAL
CVSS:9.8(Critical)

ForLogic Qualiex v1 and v3 has weak token expiration. This allows remote unauthenticated privilege escalation and access to sensitive data via token reuse.

CWE-6722020