CVSS: 8.8EPSS: 1%CPEs: 6EXPL: 0CVE-2019-8594 – webkitgtk: Multiple memory corruption issues leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2019-8594
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.3, macOS Mojave versión 10.14.5, tvOS versión 12.3, Safari versión 12.1.1, iTunes para Windows versión 12.9.5, iCloud para Windows versión 7.12. • https://support.apple.com/HT210118 https://support.apple.com/HT210119 https://support.apple.com/HT210120 https://support.apple.com/HT210123 https://support.apple.com/HT210124 https://support.apple.com/HT210125 https://support.apple.com/HT210212 https://access.redhat.com/security/cve/CVE-2019-8594 https://bugzilla.redhat.com/show_bug.cgi?id=1876891 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2019-8584 – Apple Safari RootInlineBox Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-8584
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.3, macOS Mojave versión 10.14.5, tvOS versión 12.3, Safari versión 12.1.1, iTunes para Windows versión 12.9.5, iCloud para Windows versión 7.12. • https://support.apple.com/HT210118 https://support.apple.com/HT210119 https://support.apple.com/HT210120 https://support.apple.com/HT210123 https://support.apple.com/HT210124 https://support.apple.com/HT210125 https://support.apple.com/HT210212 https://access.redhat.com/security/cve/CVE-2019-8584 https://bugzilla.redhat.com/show_bug.cgi?id=1876883 • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 7.0EPSS: 0%CPEs: 7EXPL: 0CVE-2017-7151
https://notcve.org/view.php?id=CVE-2017-7151
A race condition was addressed with additional validation. This issue affected versions prior to iOS 11.2, macOS High Sierra 10.13.2, tvOS 11.2, watchOS 4.2, iTunes 12.7.2 for Windows, macOS High Sierra 10.13.4. Una condición de carrera se abordó con una validación adicional. El problema afectaba a iOS, en versiones anteriores a la 11.2; macOS High Sierra,en versiones anteriores a la 10.13.2; tvOS, en versiones anteriores a la 11.2; watchOS, en versiones anteriores a la 4.2; iTunes para Windows, en versiones anteriores a la 12.7.2 y macOS High Sierra, en versiones anteriores a la 10.13.4. • https://support.apple.com/kb/HT208325 https://support.apple.com/kb/HT208326 https://support.apple.com/kb/HT208327 https://support.apple.com/kb/HT208331 https://support.apple.com/kb/HT208334 https://support.apple.com/kb/HT208692 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2018-4145
https://notcve.org/view.php?id=CVE-2018-4145
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.3, tvOS 11.3, watchOS 4.3, Safari 11.1, iTunes 12.7.4 for Windows, iCloud for Windows 7.4. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12; macOS Mojave en versiones anteriores a la 11.3; tvOS en versiones anteriores a la 12; watchOS en versiones anteriores a la 11.1; iTunes para Windows en versiones anteriores a la 12.7.4 y iCloud para Windows en versiones anteriores a la 7.4. • https://support.apple.com/kb/HT208693 https://support.apple.com/kb/HT208695 https://support.apple.com/kb/HT208696 https://support.apple.com/kb/HT208697 https://support.apple.com/kb/HT208698 https://support.apple.com/kb/HT208852 https://support.apple.com/kb/HT208933 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2019-8542
https://notcve.org/view.php?id=CVE-2019-8542
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious application may be able to elevate privileges. Un desbordamiento del búfer fue abordado mejorando la comprobación de límites. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4, tvOS versión 12.2, watchOS versión 5.2, iTunes versión 12.9.4 para Windows, iCloud para Windows versión 7.11. • https://support.apple.com/HT209599 https://support.apple.com/HT209600 https://support.apple.com/HT209601 https://support.apple.com/HT209602 https://support.apple.com/HT209604 https://support.apple.com/HT209605 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •