CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2019-8834
https://notcve.org/view.php?id=CVE-2019-8834
27 Oct 2020 — A configuration issue was addressed with additional restrictions. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. An attacker in a privileged network position may be able to bypass HSTS for a limited number of specific top-level domains previously not in the HSTS preload list. Se abordó un problema de confi... • https://support.apple.com/en-us/HT210785 •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8829
https://notcve.org/view.php?id=CVE-2019-8829
27 Oct 2020 — A memory corruption vulnerability was addressed with improved locking. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6.1, tvOS 13.2, iOS 13.2 and iPadOS 13.2. An application may be able to execute arbitrary code with kernel privileges. Se abordó una vulnerabilidad de corrupción de memoria con un bloqueo mejorado. Este problema se corrigió en macOS Catalina versión 10.15.1, Security Update 2019-001 y Security Update 2019-006, watchOS versi... • https://support.apple.com/en-us/HT210721 • CWE-667: Improper Locking CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8826
https://notcve.org/view.php?id=CVE-2019-8826
27 Oct 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema se corrigió en macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210634 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8824
https://notcve.org/view.php?id=CVE-2019-8824
27 Oct 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema se corrigió en macOS Catalina versión 10.15.1, Security Update 2019-001 y Security Update 2019-006. • https://support.apple.com/en-us/HT210722 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8825
https://notcve.org/view.php?id=CVE-2019-8825
27 Oct 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows 10.7, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, iCloud for Windows 7.14, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema se corrigió en macOS Catalina versió... • https://support.apple.com/en-us/HT210606 • CWE-787: Out-of-bounds Write •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8777
https://notcve.org/view.php?id=CVE-2019-8777
27 Oct 2020 — A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. A local attacker may be able to view contacts from the lock screen. Un problema de pantalla de bloqueo permitió el acceso a los contactos en un dispositivo bloqueado. • https://support.apple.com/en-us/HT209600 • CWE-276: Incorrect Default Permissions •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8776
https://notcve.org/view.php?id=CVE-2019-8776
27 Oct 2020 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with system privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210634 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8754
https://notcve.org/view.php?id=CVE-2019-8754
27 Oct 2020 — A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. A malicious HTML document may be able to render iframes with sensitive user information. Se presentó un problema de origen cruzado con los elementos "iframe". • https://support.apple.com/en-us/HT210722 • CWE-346: Origin Validation Error •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8645
https://notcve.org/view.php?id=CVE-2019-8645
27 Oct 2020 — An issue existed in the handling of encrypted Mail. This issue was addressed with improved isolation of MIME in Mail. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position may be able to intercept the contents of S/MIME-encrypted e-mail. Se presentó un problema en el manejo del Correo cifrado. • https://support.apple.com/en-us/HT209600 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8642
https://notcve.org/view.php?id=CVE-2019-8642
27 Oct 2020 — An issue existed in the handling of S-MIME certificates. This issue was addressed with improved validation of S-MIME certificates. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted mail message may lead to S/MIME signature spoofing. Se presentó un problema en el manejo de certificados S-MIME. • https://support.apple.com/en-us/HT209600 • CWE-295: Improper Certificate Validation •