CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8779
https://notcve.org/view.php?id=CVE-2019-8779
A logic issue applied the incorrect restrictions. This issue was addressed by updating the logic to apply the correct restrictions. This issue is fixed in iOS 13.1.1 and iPadOS 13.1.1. Third party app extensions may not receive the correct sandbox restrictions. Un problema lógico aplicó las restricciones incorrectas. • https://support.apple.com/HT210624 • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 2.4EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8775
https://notcve.org/view.php?id=CVE-2019-8775
The issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 13.1 and iPadOS 13.1. A person with physical access to an iOS device may be able to access contacts from the lock screen. El problema fue abordado restringiendo las opciones ofrecidas en un dispositivo bloqueado. Este problema es corregido en iOS versión 13.1 y iPadOS versión 13.1. • https://support.apple.com/HT210603 https://support.apple.com/HT210724 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8731
https://notcve.org/view.php?id=CVE-2019-8731
A permissions issue existed in which execute permission was incorrectly granted. This issue was addressed with improved permission validation. This issue is fixed in iOS 13. Processing a maliciously crafted file may disclose user information. Se presentó un problema de permisos donde el permiso de ejecución fue concedido incorrectamente. • https://support.apple.com/HT210606 • CWE-276: Incorrect Default Permissions •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8760
https://notcve.org/view.php?id=CVE-2019-8760
This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID. Este problema fue corregido mejorando los modelos de aprendizaje automático de Face ID. Este problema fue corregido en iOS versión 13. • https://support.apple.com/HT210606 • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8704
https://notcve.org/view.php?id=CVE-2019-8704
An authentication issue was addressed with improved state management. This issue is fixed in tvOS 13. A local user may be able to leak sensitive user information. Un problema de autenticación fue abordado mejorando la gestión del estado. Este problema es corregido en tvOS versión 13. • https://support.apple.com/HT210604 https://support.apple.com/HT210606 • CWE-287: Improper Authentication •