|
211881
|
6.8 |
MEDIUM
Physics
|
apple
|
iphone_os
|
This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID.
|
CWE-287
Improper Authentication
|
CVE-2019-8760
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211882
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with system privileges.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8758
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211883
|
2.5 |
LOW
Local
|
apple
|
mac_os_x
|
A race condition existed when reading and writing user preferences. This was addressed with improved state handling. This issue is fixed in macOS Catalina 10.15. The "Share Mac Analytics" setting may…
|
CWE-362
Race Condition
|
CVE-2019-8757
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211884
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15. A malicious application may be able to determine kernel memory layout.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-8755
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211885
|
9.8 |
CRITICAL
Network
|
apple
|
watchos
icloud
|
Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in watchOS 6.1, iCloud for Windows 11.0. Multiple issues in libxslt.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8750
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211886
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with kernel privileges.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8748
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211887
|
7.8 |
HIGH
Local
|
apple
|
watchos
|
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in watchOS 6.1. An application may be able to execute arbitrary code with kernel privileges.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8747
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211888
|
8.8 |
HIGH
Network
|
apple
|
tvos
itunes
icloud
mac_os_x
|
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15, tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Proc…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-8745
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211889
|
8.8 |
HIGH
Network
|
apple
|
watchos
|
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8743
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211890
|
2.4 |
LOW
Physics
|
apple
|
iphone_os
|
The issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 13. A person with physical access to an iOS device may be able to access contacts from the lock s…
|
NVD-CWE-noinfo
|
CVE-2019-8742
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
