CVE-2019-8566
https://notcve.org/view.php?id=CVE-2019-8566
An API issue existed in the handling of microphone data. This issue was addressed with improved validation. This issue is fixed in iOS 12.2. A malicious application may be able to access the microphone without indication to the user. Se presentó un problema de la API en el manejo de los datos del micrófono. • https://support.apple.com/HT209599 • CWE-20: Improper Input Validation •
CVE-2019-8617
https://notcve.org/view.php?id=CVE-2019-8617
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 12.3. A sandboxed process may be able to circumvent sandbox restrictions. Un problema de acceso fue abordado con restricciones de sandbox adicionales. Este problema es corregido en iOS versión 12.3. • https://support.apple.com/HT210118 •
CVE-2019-8567
https://notcve.org/view.php?id=CVE-2019-8567
A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.2. A device may be passively tracked by its WiFi MAC address. Un problema de privacidad del usuario fue abordado eliminando la dirección MAC de transmisión. Este problema es corregido en iOS versión 12.2. • https://support.apple.com/HT209599 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2019-8550
https://notcve.org/view.php?id=CVE-2019-8550
An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A user’s video may not be paused in a FaceTime call if they exit the FaceTime app while the call is ringing. Hubo un problema en la pausa del video FaceTime. • https://support.apple.com/HT209599 https://support.apple.com/HT209600 https://support.apple.com/HT209602 • CWE-459: Incomplete Cleanup •
CVE-2019-8554
https://notcve.org/view.php?id=CVE-2019-8554
A permissions issue existed in the handling of motion and orientation data. This issue was addressed with improved restrictions. This issue is fixed in iOS 12.2. A website may be able to access sensor information without user consent. Se presentó un problema de permisos en el manejo de datos de movimiento y orientación. • https://support.apple.com/HT209599 •