|
214471
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
This issue was addressed with improved checks. This issue is fixed in macOS Mojave 10.14.4. A local user may be able to execute arbitrary shell commands.
|
CWE-78
OS Command
|
CVE-2019-8513
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214472
|
5.7 |
MEDIUM
Network
|
apple
|
iphone_os
|
This issue was addressed with improved transparency. This issue is fixed in iOS 12.2. A user may authorize an enterprise administrator to remotely wipe their device without appropriate disclosure.
|
CWE-863
Incorrect Authorization
|
CVE-2019-8512
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214473
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
iphone_os
watchos
|
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A malicious application may be able to elevate privileges.
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-8511
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214474
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
iphone_os
watchos
tvos
|
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, w…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8510
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214475
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with …
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-8508
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214476
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.4. Processing malicious data may lead to unexpected application termination.
|
CWE-20
Improper Input Validation
|
CVE-2019-8507
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214477
|
6.1 |
MEDIUM
Network
|
apple
|
iphone_os
safari
|
A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross sit…
|
CWE-79
Cross-site Scripting
|
CVE-2019-8505
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214478
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
iphone_os
|
A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A local user may be able to read kernel memory.
|
CWE-665
Improper Initialization
|
CVE-2019-8504
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214479
|
8.8 |
HIGH
Network
|
apple
|
iphone_os
tvos
icloud
itunes
safari
|
A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to e…
|
CWE-20
Improper Input Validation
|
CVE-2019-8503
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214480
|
3.3 |
LOW
Local
|
apple
|
mac_os_x
iphone_os
watchos
tvos
|
An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicio…
|
CWE-20
Improper Input Validation
|
CVE-2019-8502
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
