CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8642
https://notcve.org/view.php?id=CVE-2019-8642
27 Oct 2020 — An issue existed in the handling of S-MIME certificates. This issue was addressed with improved validation of S-MIME certificates. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted mail message may lead to S/MIME signature spoofing. Se presentó un problema en el manejo de certificados S-MIME. • https://support.apple.com/en-us/HT209600 • CWE-295: Improper Certificate Validation •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8612
https://notcve.org/view.php?id=CVE-2019-8612
27 Oct 2020 — A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, tvOS 12.3, watchOS 5.2.1, macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3. An attacker in a privileged network position can modify driver state. Se abordó un problema lógico con una administración de estado mejorada. Este problema se corrigió en macOS Mojave versión 10.14.4, S... • https://support.apple.com/en-us/HT209600 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8640
https://notcve.org/view.php?id=CVE-2019-8640
27 Oct 2020 — A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra. A sandboxed process may be able to circumvent sandbox restrictions. Se abordó un problema lógico con una comprobación mejorada. Este problema se corrigió en macOS Mojave versión 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra. • https://support.apple.com/en-us/HT210119 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8631
https://notcve.org/view.php?id=CVE-2019-8631
27 Oct 2020 — A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3. Users removed from an iMessage conversation may still be able to alter state. Se abordó un problema lógico con una administración de estado mejorada. Este problema se corrigió en macOS Mojave versión 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS versión 12.3, tvOS versión... • https://support.apple.com/en-us/HT210118 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8618
https://notcve.org/view.php?id=CVE-2019-8618
27 Oct 2020 — A logic issue was addressed with improved restrictions. This issue is fixed in watchOS 5.2, macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.2. A sandboxed process may be able to circumvent sandbox restrictions. Se abordó un problema lógico con restricciones mejoradas. Este problema se corrigió en watchOS versión 5.2, macOS Mojave versión 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS versión 12.2. • https://support.apple.com/en-us/HT209599 •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8547
https://notcve.org/view.php?id=CVE-2019-8547
27 Oct 2020 — An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, watchOS 5.2, macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.2. A remote attacker may be able to leak memory. Se presentó un problema de lectura fuera de límites que conllevó a una divulgación de la memoria del k... • https://support.apple.com/en-us/HT209599 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8579
https://notcve.org/view.php?id=CVE-2019-8579
27 Oct 2020 — An input validation issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An application may be able to gain elevated privileges. Se abordó un problema de comprobación de entrada con un manejo de la memoria mejorada. Este problema se corrigió en macOS Mojave versión 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. • https://support.apple.com/en-us/HT209600 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8564
https://notcve.org/view.php?id=CVE-2019-8564
27 Oct 2020 — A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position can modify driver state. Se abordó un problema lógico con una comprobación mejorada.  Este problema se corrigió en macOS Mojave versión 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. • https://support.apple.com/en-us/HT209600 •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8525
https://notcve.org/view.php?id=CVE-2019-8525
27 Oct 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, watchOS 5.2, macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.2. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema se corrigió en mac... • https://support.apple.com/en-us/HT209599 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-6238
https://notcve.org/view.php?id=CVE-2019-6238
27 Oct 2020 — A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted package may lead to arbitrary code execution. Se presentó un problema de comprobación en el manejo de enlaces simbólicos. • https://support.apple.com/en-us/HT209600 • CWE-20: Improper Input Validation •