CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8836
https://notcve.org/view.php?id=CVE-2019-8836
12 Dec 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en watchOS versión 6.1.2, iOS versión 13.3.1 y iPadOS versión 13.3.1, tvOS versión 13.3.1. • https://support.apple.com/en-us/HT210918 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8828
https://notcve.org/view.php?id=CVE-2019-8828
12 Dec 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3 and iPadOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, tvOS 13.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en iOS versión 13.3 y iPadOS versión 13.3, watchOS versión 6.1.1, macOS... • https://support.apple.com/en-us/HT210785 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 0CVE-2019-8830 – FaceTime _RSU_DecodeByteBuffer Out-Of-Bounds Read
https://notcve.org/view.php?id=CVE-2019-8830
12 Dec 2019 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iOS 12.4.4, watchOS 5.3.4. Processing malicious video via FaceTime may lead to arbitrary code execution. Se abordó una lectura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en tvOS versión 13.3, watchOS versión 6.1.1, macOS Ca... • https://support.apple.com/en-us/HT210785 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2019-8848
https://notcve.org/view.php?id=CVE-2019-8848
12 Dec 2019 — This issue was addressed with improved checks. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. An application may be able to gain elevated privileges. Este problema se abordó con comprobaciones mejoradas. Este problema se corrigió en tvOS versión 13.3, watchOS versión 6.1.1, iCloud para Windows versión... • https://support.apple.com/en-us/HT210785 •
CVSS: 7.4EPSS: 0%CPEs: 8EXPL: 0CVE-2019-14899
https://notcve.org/view.php?id=CVE-2019-14899
11 Dec 2019 — A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel. Se detectó una vulne... • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-300: Channel Accessible by Non-Endpoint •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8831 – Apple macOS UIFoundation Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-8831
26 Nov 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15, iOS 13.1 and iPadOS 13.1, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6. An application may be able to execute arbitrary code with system privileges. Se abordó un problema de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en macOS Catalina versión 10.15, iOS versión 13.1 y iPadOS versión 13.1, t... • https://support.apple.com/en-us/HT210603 • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8780
https://notcve.org/view.php?id=CVE-2019-8780
01 Nov 2019 — The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13. A malicious application may be able to determine kernel memory layout. El problema se abordó con una lógica de permisos mejorada. Este problema se corrigió en iOS versión 13.1 y iPadOS versión 13.1, tvOS versión 13. • https://support.apple.com/en-us/HT210603 •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2019-8773
https://notcve.org/view.php?id=CVE-2019-8773
01 Nov 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in Safari 13.0.1, iOS 13.1 and iPadOS 13.1, iCloud for Windows 10.7, iCloud for Windows 7.14, tvOS 13, watchOS 6, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó múltiples problemas de corrupción de la memoria con un manejo de la memoria mejorada. Este problema se corrigió en Safari versión 13.0.1, iOS versión 13.1 y iPadOS versión 13... • https://support.apple.com/en-us/HT210603 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 1%CPEs: 6EXPL: 0CVE-2019-8756
https://notcve.org/view.php?id=CVE-2019-8756
01 Nov 2019 — Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iTunes 12.10.1 for Windows. Multiple issues in libxml2. Se abordó múltiples problemas de corrupción de la memoria con una comprobación de entrada mejorada. Este problema se corrigió en macOS Catalina versión 10.15, iOS vers... • https://support.apple.com/en-us/HT210604 • CWE-787: Out-of-bounds Write •
CVSS: 3.3EPSS: 0%CPEs: 5EXPL: 0CVE-2019-8809
https://notcve.org/view.php?id=CVE-2019-8809
01 Nov 2019 — A validation issue was addressed with improved logic. This issue is fixed in macOS Catalina 10.15, iOS 13.1 and iPadOS 13.1, tvOS 13, watchOS 6, iOS 13. A local app may be able to read a persistent account identifier. Se abordó un problema de comprobación con una lógica mejorada. Este problema se corrigió en macOS Catalina versión 10.15, iOS versión 13.1 y iPadOS versión 13.1, tvOS versión 13, watchOS versión 6, iOS versión 13. • https://support.apple.com/en-us/HT210603 •