|
212361
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
iphone_os
|
This issue was addressed with improved checks. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to overwrite arbitrary files.
|
NVD-CWE-noinfo
|
CVE-2019-8521
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212362
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to read restricted memory.
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8520
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212363
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. An application may be able to read restricted memory.
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8519
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212364
|
8.8 |
HIGH
Network
|
apple
|
iphone_os
watchos
tvos
icloud
itunes
safari
|
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.1…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8518
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212365
|
6.5 |
MEDIUM
Network
|
apple
|
mac_os_x
iphone_os
watchos
tvos
|
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. Processing a maliciously crafted font may result in t…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8517
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212366
|
7.5 |
HIGH
Network
|
apple
|
mac_os_x
iphone_os
watchos
tvos
|
A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. Processing a maliciously crafted string may lead to a denial of se…
|
CWE-20
Improper Input Validation
|
CVE-2019-8516
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212367
|
6.5 |
MEDIUM
Network
|
apple
|
iphone_os
tvos
icloud
itunes
safari
|
A cross-origin issue existed with the fetch API. This was addressed with improved input validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Wind…
|
CWE-20
Improper Input Validation
|
CVE-2019-8515
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212368
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
iphone_os
watchos
tvos
|
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. An application may be able to gain elevated privileges.
|
NVD-CWE-noinfo
|
CVE-2019-8514
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212369
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
This issue was addressed with improved checks. This issue is fixed in macOS Mojave 10.14.4. A local user may be able to execute arbitrary shell commands.
|
CWE-78
OS Command
|
CVE-2019-8513
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212370
|
5.7 |
MEDIUM
Network
|
apple
|
iphone_os
|
This issue was addressed with improved transparency. This issue is fixed in iOS 12.2. A user may authorize an enterprise administrator to remotely wipe their device without appropriate disclosure.
|
CWE-863
Incorrect Authorization
|
CVE-2019-8512
|
2024-11-21 13:49 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
