CVSS: 8.4EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8803
https://notcve.org/view.php?id=CVE-2019-8803
An authentication issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. A local attacker may be able to login to the account of a previously logged in user without valid credentials.. Un problema de autenticación fue abordado con una gestión de estado mejorada. Este problema es corregido en iOS versión 13.2 y iPadOS versión 13.2, macOS Catalina versión 10.15.1, tvOS versión 13.2, watchOS versión 6.1. • https://support.apple.com/HT210721 https://support.apple.com/HT210722 https://support.apple.com/HT210723 https://support.apple.com/HT210724 • CWE-613: Insufficient Session Expiration •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8786
https://notcve.org/view.php?id=CVE-2019-8786
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with kernel privileges. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en iOS versión 13.2 y iPadOS versión 13.2, macOS Catalina versión 10.15.1, tvOS versión 13.2, watchOS versión 6.1. • https://support.apple.com/HT210721 https://support.apple.com/HT210722 https://support.apple.com/HT210723 https://support.apple.com/HT210724 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8798 – Apple macOS fseventsd Uninitialized Buffer Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-8798
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with system privileges. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en iOS versión 13.2 y iPadOS versión 13.2, macOS Catalina versión 10.15.1, tvOS versión 13.2, watchOS versión 6.1. • https://support.apple.com/HT210721 https://support.apple.com/HT210722 https://support.apple.com/HT210723 https://support.apple.com/HT210724 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8794
https://notcve.org/view.php?id=CVE-2019-8794
A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to read restricted memory. Un problema de comprobación fue abordado mejorando el saneamiento de la entrada. Este problema es corregido en iOS versión 13.2 y iPadOS versión 13.2, macOS Catalina versión 10.15.1, tvOS versión 13.2, watchOS versión 6.1. • https://support.apple.com/HT210721 https://support.apple.com/HT210722 https://support.apple.com/HT210723 https://support.apple.com/HT210724 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8789
https://notcve.org/view.php?id=CVE-2019-8789
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Parsing a maliciously crafted iBooks file may lead to disclosure of user information. Se presentó un problema de comprobación en el manejo de enlaces simbólicos. • https://support.apple.com/HT210721 https://support.apple.com/HT210722 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •