|
212111
|
7.5 |
HIGH
Network
|
apple
|
watchos
iphone_os
|
A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.4, watchOS 5.3. A remote attacker may cause an unexpected application termination.
|
CWE-20
Improper Input Validation
|
CVE-2019-8665
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212112
|
5.3 |
MEDIUM
Network
|
apple
|
mac_os_x
iphone_os
|
This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6. A remote attacker may be able to leak memory.
|
NVD-CWE-noinfo
|
CVE-2019-8663
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212113
|
9.8 |
CRITICAL
Network
|
apple
|
mac_os_x
tvos
watchos
iphone_os
|
This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. An attacker may be able to trigger a use-after-free in an application des…
|
CWE-416
CWE-502
Use After Free
Deserialization of Untrusted Data
|
CVE-2019-8662
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212114
|
9.8 |
CRITICAL
Network
|
apple
|
mac_os_x
|
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Mojave 10.14.6. A remote attacker may be able to cause arbitrary code execution.
|
CWE-416
Use After Free
|
CVE-2019-8661
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212115
|
9.8 |
CRITICAL
Network
|
apple
|
mac_os_x
tvos
watchos
iphone_os
|
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to cause unexpecte…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8660
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212116
|
7.5 |
HIGH
Network
|
apple
|
watchos
|
This issue was addressed with improved checks. This issue is fixed in watchOS 5.3. Users removed from an iMessage conversation may still be able to alter state.
|
NVD-CWE-noinfo
|
CVE-2019-8659
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212117
|
6.1 |
MEDIUM
Network
|
apple
|
mac_os_x
safari
tvos
watchos
iphone_os
icloud
itunes
|
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows…
|
CWE-79
Cross-site Scripting
|
CVE-2019-8658
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212118
|
8.8 |
HIGH
Network
|
apple
|
mac_os_x
tvos
watchos
iphone_os
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. Parsing a maliciously crafted office document may le…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8657
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212119
|
6.5 |
MEDIUM
Network
|
apple
|
safari
|
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 13.0.1. Visiting a malicious website may lead to user interface spoofing.
|
CWE-20
Improper Input Validation
|
CVE-2019-8654
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212120
|
6.1 |
MEDIUM
Network
|
apple
|
mac_os_x
safari
tvos
iphone_os
icloud
itunes
|
A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1…
|
CWE-79
Cross-site Scripting
|
CVE-2019-8649
|
2024-11-21 13:50 |
2019-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
