CVSS: 8.8EPSS: 43%CPEs: 1EXPL: 2CVE-2019-8765 – JavaScriptCore - GetterSetter Type Confusion During DFG Compilation
https://notcve.org/view.php?id=CVE-2019-8765
30 Oct 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en watchOS versión 6.1. • https://packetstorm.news/files/id/155030 • CWE-787: Out-of-bounds Write •
CVSS: 2.4EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8775 – Apple Security Advisory 2019-10-29-11
https://notcve.org/view.php?id=CVE-2019-8775
29 Sep 2019 — The issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 13.1 and iPadOS 13.1. A person with physical access to an iOS device may be able to access contacts from the lock screen. El problema fue abordado restringiendo las opciones ofrecidas en un dispositivo bloqueado. Este problema es corregido en iOS versión 13.1 y iPadOS versión 13.1. • https://support.apple.com/HT210603 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8659 – Apple Security Advisory 2019-8-13-3
https://notcve.org/view.php?id=CVE-2019-8659
23 Jul 2019 — This issue was addressed with improved checks. This issue is fixed in watchOS 5.3. Users removed from an iMessage conversation may still be able to alter state. Este problema fue abordado con comprobaciones mejoradas. Este problema es corregido en watchOS versión 5.3. • https://support.apple.com/HT210353 •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2CVE-2019-8624 – Apple iMessage - DigitalTouch tap Message Processing Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2019-8624
23 Jul 2019 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 5.3. A remote attacker may be able to leak memory. Una lectura fuera de límites fue abordada con una comprobación de entrada mejorada. Este problema es corregido en watchOS versión 5.3. • https://packetstorm.news/files/id/153764 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 1%CPEs: 8EXPL: 0CVE-2019-8683 – webkitgtk: Multiple memory corruption issues leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2019-8683
22 Jul 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.4, macOS Mojave versión 10.14.6, tvOS ... • https://support.apple.com/HT210346 • CWE-787: Out-of-bounds Write •
CVSS: 2.4EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8682 – Apple Security Advisory 2019-7-22-1
https://notcve.org/view.php?id=CVE-2019-8682
22 Jul 2019 — The issue was addressed with improved UI handling. This issue is fixed in iOS 12.4, watchOS 5.3. A user may inadvertently complete an in-app purchase while on the lock screen. El problema fue abordado con un manejo mejorado de la Interfaz de Usuario. Este problema es corregido en iOS versión 12.4, watchOS versión 5.3. • https://support.apple.com/HT210346 • CWE-306: Missing Authentication for Critical Function •
CVSS: 9.3EPSS: 2%CPEs: 11EXPL: 0CVE-2019-8669 – Apple Safari bind Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-8669
22 Jul 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.4, macOS Mojave versión 10.14.6, tvOS ... • https://support.apple.com/HT210346 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 23%CPEs: 11EXPL: 0CVE-2019-8688 – webkitgtk: Multiple memory corruption issues leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2019-8688
22 Jul 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. Múltiples problemas de corrupción de memoria fueron abordados mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.4, macOS Mojave versión 10.14.6, tvOS ... • https://support.apple.com/HT210346 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 6%CPEs: 3EXPL: 2CVE-2019-8647 – iMessage - NSArray Deserialization can Invoke Subclass that does not Retain References
https://notcve.org/view.php?id=CVE-2019-8647
22 Jul 2019 — A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.4, tvOS 12.4, watchOS 5.3. A remote attacker may be able to cause arbitrary code execution. Un problema de uso de la memoria previamente liberada fue abordado con una gestión de memoria mejorada. Este problema es corregido en iOS versión 12.4, tvOS versión 12.4, watchOS 5.3. • https://packetstorm.news/files/id/153826 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8665 – Apple Security Advisory 2019-7-22-1
https://notcve.org/view.php?id=CVE-2019-8665
22 Jul 2019 — A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.4, watchOS 5.3. A remote attacker may cause an unexpected application termination. Un problema de denegación de servicio fue abordado con una comprobación mejorada. Este problema es corregido en iOS versión 12.4, watchOS versión 5.3. • https://support.apple.com/HT210346 • CWE-20: Improper Input Validation •