CVE-2019-8699
https://notcve.org/view.php?id=CVE-2019-8699
A logic issue existed in the handling of answering phone calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4. The initiator of a phone call may be able to cause the recipient to answer a simultaneous Walkie-Talkie connection. Se presentó un problema lógico en el manejo de respuestas a llamadas telefónicas. • https://support.apple.com/HT210346 •
CVE-2019-8698
https://notcve.org/view.php?id=CVE-2019-8698
A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue is fixed in iOS 12.4, tvOS 12.4. A malicious application may be able to restrict access to websites. Se presentó un problema de comprobación en la verificación de los derechos. • https://support.apple.com/HT210346 https://support.apple.com/HT210351 • CWE-20: Improper Input Validation •
CVE-2019-8630
https://notcve.org/view.php?id=CVE-2019-8630
The issue was addressed with improved UI handling. This issue is fixed in iOS 12.3. The lock screen may show a locked icon after unlocking. El problema fue abordado con un manejo mejorado de la Interfaz de Usuario. Este problema es corregido en iOS versión 12.3. • https://support.apple.com/HT210118 •
CVE-2019-8617
https://notcve.org/view.php?id=CVE-2019-8617
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 12.3. A sandboxed process may be able to circumvent sandbox restrictions. Un problema de acceso fue abordado con restricciones de sandbox adicionales. Este problema es corregido en iOS versión 12.3. • https://support.apple.com/HT210118 •
CVE-2019-8567
https://notcve.org/view.php?id=CVE-2019-8567
A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.2. A device may be passively tracked by its WiFi MAC address. Un problema de privacidad del usuario fue abordado eliminando la dirección MAC de transmisión. Este problema es corregido en iOS versión 12.2. • https://support.apple.com/HT209599 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •