CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2019-8514 – iOS < 12.2 / macOS < 10.14.4 XNU - pidversion Increment During execve is Unsafe
https://notcve.org/view.php?id=CVE-2019-8514
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. An application may be able to gain elevated privileges. Un problema lógico fue abordado mejorando la gestión del estado. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4, tvOS versión 12.2, watchOS versión 5.2. • https://www.exploit-db.com/exploits/46648 https://support.apple.com/HT209599 https://support.apple.com/HT209600 https://support.apple.com/HT209601 https://support.apple.com/HT209602 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8510
https://notcve.org/view.php?id=CVE-2019-8510
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout. Se presentó un problema de lectura fuera de límites que condujo a la divulgación de la memoria del kernel. • https://support.apple.com/HT209599 https://support.apple.com/HT209600 https://support.apple.com/HT209601 https://support.apple.com/HT209602 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8507
https://notcve.org/view.php?id=CVE-2019-8507
Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.4. Processing malicious data may lead to unexpected application termination. Múltiples problemas de corrupción de memoria fueron abordados con una comprobación de entrada mejorada. Este problema es corregido en macOS Mojave versión 10.14.4. • https://support.apple.com/HT209600 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-6239
https://notcve.org/view.php?id=CVE-2019-6239
This issue was addressed with improved handling of file metadata. This issue is fixed in macOS Mojave 10.14.4. A malicious application may bypass Gatekeeper checks. Este problema fue abordado mejorando el manejo de los metadatos de los archivos. Este problema es corregido en macOS Mojave versión 10.14.4. • https://support.apple.com/HT209446 https://support.apple.com/HT209600 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8533
https://notcve.org/view.php?id=CVE-2019-8533
A lock handling issue was addressed with improved lock handling. This issue is fixed in macOS Mojave 10.14.4. A Mac may not lock when disconnecting from an external monitor. Un problema de manejo de bloqueo fue abordado con un manejo mejorado de bloqueo. Este problema es corregido en macOS Mojave versión 10.14.4. • https://support.apple.com/HT209600 • CWE-287: Improper Authentication •