CVSS: 6.1EPSS: 0%CPEs: 7EXPL: 0CVE-2019-8762
https://notcve.org/view.php?id=CVE-2019-8762
A validation issue was addressed with improved logic. This issue is fixed in Safari 13.0.1, iOS 13.1 and iPadOS 13.1, iCloud for Windows 10.7, tvOS 13, iCloud for Windows 7.14, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to universal cross site scripting. Se abordó un problema de comprobación con una lógica mejorada. Este problema se corrigió en Safari versión 13.0.1, iOS versión 13.1 y iPadOS versión 13.1, iCloud para Windows versión 10.7, tvOS versión 13, iCloud para Windows versión 7.14, iTunes versión 12.10.1 para Windows. • https://support.apple.com/en-us/HT210603 https://support.apple.com/en-us/HT210604 https://support.apple.com/en-us/HT210605 https://support.apple.com/en-us/HT210635 https://support.apple.com/en-us/HT210636 https://support.apple.com/en-us/HT210637 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8732
https://notcve.org/view.php?id=CVE-2019-8732
The issue was addressed with improved data deletion. This issue is fixed in iOS 13. Deleted calls remained visible on the device. El problema se abordó con una eliminación de datos mejorada. Este problema se corrigió en iOS versión 13. • https://support.apple.com/en-us/HT210606 • CWE-459: Incomplete Cleanup •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8668
https://notcve.org/view.php?id=CVE-2019-8668
A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.4, tvOS 12.4, watchOS 5.3. Processing a maliciously crafted image may lead to a denial of service. Se abordó un problema de denegación de servicio con una comprobación mejorada. Este problema se corrigió en iOS versión 12.4, tvOS versión 12.4, watchOS versión 5.3. • https://support.apple.com/en-us/HT210346 https://support.apple.com/en-us/HT210351 https://support.apple.com/en-us/HT210353 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8638
https://notcve.org/view.php?id=CVE-2019-8638
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 5.2, iCloud for Windows 7.11, iOS 12.2, iTunes 12.9.4 for Windows, Safari 12.1. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó múltiples problemas de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en watchOS versión 5.2, iCloud para Windows versión 7.11, iOS versión 12.2, iTunes versión 12.9.4 para Windows, Safari versión 12.1. • https://support.apple.com/en-us/HT209599 https://support.apple.com/en-us/HT209602 https://support.apple.com/en-us/HT209603 https://support.apple.com/en-us/HT209604 https://support.apple.com/en-us/HT209605 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8633
https://notcve.org/view.php?id=CVE-2019-8633
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3, watchOS 5.3. An application may be able to read restricted memory. Se abordó un problema de comprobación mejorando la saneamiento de entradas. Este problema se corrigió en macOS Mojave versión 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS versión 12.3, tvOS versión 12.3, watchOS versión 5.3. • https://support.apple.com/en-us/HT210118 https://support.apple.com/en-us/HT210119 https://support.apple.com/en-us/HT210120 https://support.apple.com/en-us/HT210353 • CWE-20: Improper Input Validation •