ByteOS Network

CVE Vulnerability Details :

CVE-2022-26773

PUBLISHED

More Info Official Page

Assigner-apple

Assigner Org ID-286789f9-fbc2-4510-9f9a-43facdede74c

Published At-26 May, 2022 | 19:28

Updated At-30 May, 2025 | 16:57

▼CVE Numbering Authority (CNA)

A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.12.4 for Windows. An application may be able to delete files for which it does not have permission.

Affected Products

Vendor

Apple Inc.

Product

iTunes for Windows

Versions

Affected

From unspecified before 12.12 (custom)

Problem Types

Type	CWE ID	Description
text	N/A	An application may be able to delete files for which it does not have permission

Type: text

CWE ID: N/A

Description: An application may be able to delete files for which it does not have permission

References

Hyperlink	Resource
https://support.apple.com/en-us/HT213259	x_refsource_MISC

Hyperlink: https://support.apple.com/en-us/HT213259

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://support.apple.com/en-us/HT213259	x_refsource_MISC x_transferred

Hyperlink: https://support.apple.com/en-us/HT213259

Resource:

x_refsource_MISC

x_transferred

2. CISA ADP Vulnrichment

Problem Types

Type	CWE ID	Description
CWE	CWE-285	CWE-285 Improper Authorization

Type: CWE

CWE ID: CWE-285

Description: CWE-285 Improper Authorization

Metrics

Version	Base score	Base severity	Vector
3.1	7.1	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Version: 3.1

Base score: 7.1

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References