CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8856
https://notcve.org/view.php?id=CVE-2019-8856
12 Dec 2019 — An API issue existed in the handling of outgoing phone calls initiated with Siri. This issue was addressed with improved state handling. This issue is fixed in iOS 13.3 and iPadOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra. Calls made using Siri may be initiated using the wrong cellular plan on devices with two active plans. Se presentó un problema de la API en el manejo de llamadas telefónicas salientes iniciadas con Siri. • https://support.apple.com/en-us/HT210785 •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8828
https://notcve.org/view.php?id=CVE-2019-8828
12 Dec 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3 and iPadOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, tvOS 13.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en iOS versión 13.3 y iPadOS versión 13.3, watchOS versión 6.1.1, macOS... • https://support.apple.com/en-us/HT210785 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 0CVE-2019-8830 – FaceTime _RSU_DecodeByteBuffer Out-Of-Bounds Read
https://notcve.org/view.php?id=CVE-2019-8830
12 Dec 2019 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iOS 12.4.4, watchOS 5.3.4. Processing malicious video via FaceTime may lead to arbitrary code execution. Se abordó una lectura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en tvOS versión 13.3, watchOS versión 6.1.1, macOS Ca... • https://support.apple.com/en-us/HT210785 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2019-8848
https://notcve.org/view.php?id=CVE-2019-8848
12 Dec 2019 — This issue was addressed with improved checks. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. An application may be able to gain elevated privileges. Este problema se abordó con comprobaciones mejoradas. Este problema se corrigió en tvOS versión 13.3, watchOS versión 6.1.1, iCloud para Windows versión... • https://support.apple.com/en-us/HT210785 •
CVSS: 7.4EPSS: 0%CPEs: 8EXPL: 0CVE-2019-14899
https://notcve.org/view.php?id=CVE-2019-14899
11 Dec 2019 — A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel. Se detectó una vulne... • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-300: Channel Accessible by Non-Endpoint •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8831 – Apple macOS UIFoundation Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-8831
26 Nov 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15, iOS 13.1 and iPadOS 13.1, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6. An application may be able to execute arbitrary code with system privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en macOS Catalina versión 10.15, iOS versión 13.1 y iPadOS versión 13.1, t... • https://support.apple.com/en-us/HT210603 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8774
https://notcve.org/view.php?id=CVE-2019-8774
01 Nov 2019 — A resource exhaustion issue was addressed with improved input validation. This issue is fixed in iOS 13.1 and iPadOS 13.1, macOS Catalina 10.15. Parsing a maliciously crafted iBooks file may lead to a persistent denial-of-service. Se abordó un problema de agotamiento de recursos con una comprobación de entrada mejorada. Este problema se corrigió en iOS versión 13.1 y iPadOS versión 13.1, macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210603 • CWE-20: Improper Input Validation CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8761
https://notcve.org/view.php?id=CVE-2019-8761
01 Nov 2019 — This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. Parsing a maliciously crafted text file may lead to disclosure of user information. Este problema se corrigió con comprobaciones mejoradas. Este problema se corrigió en macOS Catalina versión 10.15.1, Security Update 2019-001 y Security Update 2019-006, macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210634 •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8759
https://notcve.org/view.php?id=CVE-2019-8759
01 Nov 2019 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. A local user may be able to cause unexpected system termination or read kernel memory. Se abordó una lectura fuera de límites con una comprobación de límites mejorada. Este problema se corrigió en macOS Catalina versión 10.15.1, Security Update 2019-001 y Security Update 2019-006, macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210634 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8767
https://notcve.org/view.php?id=CVE-2019-8767
01 Nov 2019 — A memory consumption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. Processing a maliciously crafted string may lead to heap corruption. Se abordó un problema de consumo de memoria con un manejo de la memoria mejorada. Este problema se corrigió en macOS Catalina versión 10.15.1, Security Update 2019-001 y Security Update 2019-006, macOS Catalina versión 10.15. • https://support.apple.com/en-us/HT210634 • CWE-787: Out-of-bounds Write •