CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8556 – Apple Security Advisory 2019-3-25-4
https://notcve.org/view.php?id=CVE-2019-8556
26 Mar 2019 — A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. Un problema de uso de la memoria previamente liberada fue abordado con una gestión de memoria mejorada. Este problema es corregido en iOS versión 12.2, tvOS versión 12.2, Safari versión 12.1, iTunes versión 12.9.4 para Windows, iCloud para Windows vers... • https://support.apple.com/HT209599 • CWE-416: Use After Free •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8566 – Apple Security Advisory 2019-3-25-1
https://notcve.org/view.php?id=CVE-2019-8566
26 Mar 2019 — An API issue existed in the handling of microphone data. This issue was addressed with improved validation. This issue is fixed in iOS 12.2. A malicious application may be able to access the microphone without indication to the user. Se presentó un problema de la API en el manejo de los datos del micrófono. • https://support.apple.com/HT209599 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 5%CPEs: 9EXPL: 0CVE-2019-8544 – webkitgtk: malicious crafted web content leads to arbitrary we content
https://notcve.org/view.php?id=CVE-2019-8544
26 Mar 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.2, tvOS versión 12.2, watchOS versión 5.2, Safari versión 12.1, iTunes versión 12.9.4 para Windows, iCloud p... • https://support.apple.com/HT209599 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-787: Out-of-bounds Write •
CVSS: 9.4EPSS: 1%CPEs: 4EXPL: 0CVE-2019-8527 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8527
26 Mar 2019 — A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory. Un desbordamiento del búfer fue abordado con una comprobación de tamaño mejorada. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4, tvOS versión 12.2, watchOS versión 5.2. • https://support.apple.com/HT209599 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 2CVE-2019-8565 – Apple Mac OS X - Feedback Assistant Race Condition
https://notcve.org/view.php?id=CVE-2019-8565
26 Mar 2019 — A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain root privileges. Una condición de carrera se abordó con comprobación adicional. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4. • https://packetstorm.news/files/id/152996 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8541 – Apple Security Advisory 2019-3-27-1
https://notcve.org/view.php?id=CVE-2019-8541
26 Mar 2019 — A privacy issue existed in motion sensor calibration. This issue was addressed with improved motion sensor processing. This issue is fixed in iOS 12.2, watchOS 5.2. A malicious app may be able to track users between installs. Se presentó un problema de privacidad en la calibración del sensor de movimiento. • https://support.apple.com/HT209599 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8567 – Apple Security Advisory 2019-3-25-1
https://notcve.org/view.php?id=CVE-2019-8567
26 Mar 2019 — A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.2. A device may be passively tracked by its WiFi MAC address. Un problema de privacidad del usuario fue abordado eliminando la dirección MAC de transmisión. Este problema es corregido en iOS versión 12.2. • https://support.apple.com/HT209599 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8529 – Apple macOS SCSITaskUserClient Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-8529
26 Mar 2019 — A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. An application may be able to execute arbitrary code with kernel privileges. Un problema de corrupción de memoria fue abordado mejorando la comprobación de entrada. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4. • https://support.apple.com/HT209599 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 60%CPEs: 6EXPL: 1CVE-2019-8558 – WebKit JavaScriptCore - CodeBlock Dangling Watchpoints Use-After-Free
https://notcve.org/view.php?id=CVE-2019-8558
26 Mar 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.2, tvOS versión 12.2, watchOS versión 5.2, Safari versión 12.1, iTunes versión 12.9.4 p... • https://www.exploit-db.com/exploits/46650 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 18EXPL: 0CVE-2019-8550 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8550
26 Mar 2019 — An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A user’s video may not be paused in a FaceTime call if they exit the FaceTime app while the call is ringing. Hubo un problema en la pausa del video FaceTime. • https://support.apple.com/HT209599 • CWE-459: Incomplete Cleanup •