CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8777
https://notcve.org/view.php?id=CVE-2019-8777
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. A local attacker may be able to view contacts from the lock screen. Un problema de pantalla de bloqueo permitió el acceso a los contactos en un dispositivo bloqueado. • https://support.apple.com/en-us/HT209600 • CWE-276: Incorrect Default Permissions •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8776
https://notcve.org/view.php?id=CVE-2019-8776
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with system privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210634 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8754
https://notcve.org/view.php?id=CVE-2019-8754
A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. A malicious HTML document may be able to render iframes with sensitive user information. Se presentó un problema de origen cruzado con los elementos "iframe". • https://support.apple.com/en-us/HT210722 • CWE-346: Origin Validation Error •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8645
https://notcve.org/view.php?id=CVE-2019-8645
An issue existed in the handling of encrypted Mail. This issue was addressed with improved isolation of MIME in Mail. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position may be able to intercept the contents of S/MIME-encrypted e-mail. Se presentó un problema en el manejo del Correo cifrado. • https://support.apple.com/en-us/HT209600 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8642
https://notcve.org/view.php?id=CVE-2019-8642
An issue existed in the handling of S-MIME certificates. This issue was addressed with improved validation of S-MIME certificates. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted mail message may lead to S/MIME signature spoofing. Se presentó un problema en el manejo de certificados S-MIME. • https://support.apple.com/en-us/HT209600 • CWE-295: Improper Certificate Validation •