ID

VAR-201912-0117


CVE

CVE-2019-8803


TITLE

plural Apple Updates to product vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2019-011304

DESCRIPTION

An authentication issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. A local attacker may be able to login to the account of a previously logged in user without valid credentials.. Apple Has released an update for each product.The expected impact depends on each vulnerability, but can be affected as follows: * * information leak * * User impersonation * * Arbitrary code execution * * UI Spoofing * * Insufficient access restrictions * * Service operation interruption (DoS) * * Privilege escalation * * Memory corruption * * Authentication bypass. Apple iOS, etc. are all products of Apple (Apple). Apple iOS is an operating system developed for mobile devices. Apple tvOS is a smart TV operating system. App Store is one of the application store components. A security vulnerability exists in the App Store component of several Apple products. The following products and versions are affected: Apple macOS Catalina prior to 10.15.1; watchOS prior to 6.1; iOS prior to 13.2; iPadOS prior to 13.2; tvOS prior to 13.2. CVE-2019-8750: found by OSS-Fuzz VoiceOver Available for: Apple Watch Series 1 and later Impact: A person with physical access to an iOS device may be able to access contacts from the lock screen Description: The issue was addressed by restricting options offered on a locked device. Alternatively, on your watch, select "My Watch > General > About". -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2019-10-29-1 iOS 13.2 and iPadOS 13.2 iOS 13.2 and iPadOS 13.2 are now available and address the following: Accounts Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: A remote attacker may be able to leak memory Description: An out-of-bounds read was addressed with improved input validation. CVE-2019-8787: Steffen Klee of Secure Mobile Networking Lab at Technische Universität Darmstadt App Store Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: A local attacker may be able to login to the account of a previously logged in user without valid credentials. CVE-2019-8803: Kiyeon An, 차민규 (CHA Minkyu) Associated Domains Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: Improper URL processing may lead to data exfiltration Description: An issue existed in the parsing of URLs. CVE-2019-8788: Juha Lindstedt of Pakastin, Mirko Tanania, Rauli Rikama of Zero Keyboard Ltd Audio Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2019-8785: Ian Beer of Google Project Zero CVE-2019-8797: 08Tc3wBB working with SSD Secure Disclosure AVEVideoEncoder Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2019-8795: 08Tc3wBB working with SSD Secure Disclosure Books Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: Parsing a maliciously crafted iBooks file may lead to disclosure of user information Description: A validation issue existed in the handling of symlinks. CVE-2019-8789: Gertjan Franken of imec-DistriNet, KU Leuven Contacts Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: Processing a maliciously contact may lead to UI spoofing Description: An inconsistent user interface issue was addressed with improved state management. CVE-2017-7152: Oliver Paukstadt of Thinking Objects GmbH (to.com) File System Events Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2019-8798: ABC Research s.r.o. working with Trend Micro's Zero Day Initiative Graphics Driver Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2019-8784: Vasiliy Vasilyev and Ilya Finogeev of Webinar, LLC Kernel Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization. CVE-2019-8794: 08Tc3wBB working with SSD Secure Disclosure Kernel Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2019-8786: an anonymous researcher Screen Time Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: A local user may be able to record the screen without a visible screen recording indicator Description: A consistency issue existed in deciding when to show the screen recording indicator. CVE-2019-8793: Ryan Jenkins of Lake Forrest Prep School Setup Assistant Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup Description: An inconsistency in Wi-Fi network configuration settings was addressed. CVE-2019-8804: Christy Philip Mathew of Zimperium, Inc WebKit Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: Processing maliciously crafted web content may lead to universal cross site scripting Description: A logic issue was addressed with improved state management. CVE-2019-8813: an anonymous researcher WebKit Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling. CVE-2019-8782: Cheolung Lee of LINE+ Security Team CVE-2019-8783: Cheolung Lee of LINE+ Graylab Security Team CVE-2019-8808: found by OSS-Fuzz CVE-2019-8811: Soyeon Park of SSLab at Georgia Tech CVE-2019-8812: an anonymous researcher CVE-2019-8814: Cheolung Lee of LINE+ Security Team CVE-2019-8816: Soyeon Park of SSLab at Georgia Tech CVE-2019-8819: Cheolung Lee of LINE+ Security Team CVE-2019-8820: Samuel Groß of Google Project Zero CVE-2019-8821: Sergei Glazunov of Google Project Zero CVE-2019-8822: Sergei Glazunov of Google Project Zero CVE-2019-8823: Sergei Glazunov of Google Project Zero WebKit Process Model Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling. CVE-2019-8815: Apple Additional recognition CFNetwork We would like to acknowledge Lily Chen of Google for their assistance. Kernel We would like to acknowledge Jann Horn of Google Project Zero for their assistance. WebKit We would like to acknowledge Dlive of Tencent's Xuanwu Lab and Zhiyi Zhang of Codesafe Team of Legendsec at Qi'anxin Group for their assistance. Installation note: This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from https://www.apple.com/itunes/ iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device. The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device. To check that the iPhone, iPod touch, or iPad has been updated: * Navigate to Settings * Select General * Select About. The version after applying this update will be "iOS 13.2 and iPadOS 13.2". Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQJdBAEBCABHFiEEM5FaaFRjww9EJgvRBz4uGe3y0M0FAl24p5UpHHByb2R1Y3Qt c2VjdXJpdHktbm9yZXBseUBsaXN0cy5hcHBsZS5jb20ACgkQBz4uGe3y0M3v+g/+ Mffrv0Z/ZyoODELKoxbPFVk0AsQoZoOk5k2h84WaUyA9hJ007Ptv2ENTAU6xIOf4 F1ksBThWEeDJ/ucvJBbE5+V+F+8AkOhRLvvBvoH+u8x2vhUQK3Li5ojCgBptEHWU BnCFBHpbYXKxlyudqGfK3lLv3LChkNQpteYIB3asnY9H2uxHeofus8pOtGWuiG50 n8jdM8TriFlPamPOtHCvRT09j5OYOsZpS6eVFey6nWaWhaYQfbo0gk4cBaTjzmUW 4NvWYbxK9w/OmQN/QXdJ+H3cLqPhWBh5pmXrWlZTCYXlkD9XggsQL1/P7chkS/gp LdmG1VktxfWQQtfvwtzB2en3Xwd4xnkOcEcCdEIanQushCTagGNjNJN6a6PQy5lh FUHT8bDHBHV1bsirxGhV8lPk9byghCwcoC69ptCfPohDAVr20nVrPoxklWDlVYiC C3tbp2obFI2IV6LKPD4DUyPUo/VOv33j9+en8stZghLF7IuTJYm7V7PMuauxmXX4 wxrhDmrrA/H3GHeP/qHTlb0TcUurP3PoLU1GRn1djDccL607Gd49ezrvTIQxpU8N ZzgAdXeNgy3vjR88w6ZqUmpNWN8WItfwWQ7cRV+CiFGywcA+J23mzUWUNyYVLHUv /NnyM25nIe8IOrwFa2S/PaaMFr2fCvZeUkuG2/IYFh0= =QoQv -----END PGP SIGNATURE-----

Trust: 1.98

sources: NVD: CVE-2019-8803 // JVNDB: JVNDB-2019-011304 // VULHUB: VHN-160238 // PACKETSTORM: 155065 // PACKETSTORM: 155069 // PACKETSTORM: 155058

AFFECTED PRODUCTS

vendor:applemodel:tvosscope:ltversion:13.2

Trust: 1.0

vendor:applemodel:ipadosscope:ltversion:13.2

Trust: 1.0

vendor:applemodel:watchosscope:ltversion:6.1

Trust: 1.0

vendor:applemodel:mac os xscope:ltversion:10.15.1

Trust: 1.0

vendor:applemodel:iphone osscope:ltversion:13.2

Trust: 1.0

vendor:applemodel:icloudscope:ltversion:for windows 11.0 earlier

Trust: 0.8

vendor:applemodel:icloudscope:ltversion:for windows 7.15 earlier

Trust: 0.8

vendor:applemodel:iosscope:ltversion:13.2 earlier

Trust: 0.8

vendor:applemodel:ipadosscope:ltversion:13.2 earlier

Trust: 0.8

vendor:applemodel:itunesscope:ltversion:12.10.2 for windows earlier

Trust: 0.8

vendor:applemodel:macos catalinascope:ltversion:10.15.1 earlier

Trust: 0.8

vendor:applemodel:macos high sierrascope:eqversion:10.13.6 (security update 2019-006 not applied )

Trust: 0.8

vendor:applemodel:macos mojavescope:eqversion:10.14.6 (security update 2019-001 not applied )

Trust: 0.8

vendor:applemodel:safariscope:ltversion:13.0.3 earlier

Trust: 0.8

vendor:applemodel:tvosscope:ltversion:13.2 earlier

Trust: 0.8

vendor:applemodel:watchosscope:ltversion:6.1 earlier

Trust: 0.8

vendor:applemodel:xcodescope:ltversion:11.2 earlier

Trust: 0.8

sources: JVNDB: JVNDB-2019-011304 // NVD: CVE-2019-8803

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-8803
value: HIGH

Trust: 1.0

CNNVD: CNNVD-201910-1781
value: HIGH

Trust: 0.6

VULHUB: VHN-160238
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-8803
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-160238
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-8803
baseSeverity: HIGH
baseScore: 8.4
vectorString: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.5
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: VULHUB: VHN-160238 // CNNVD: CNNVD-201910-1781 // NVD: CVE-2019-8803

PROBLEMTYPE DATA

problemtype:CWE-613

Trust: 1.1

sources: VULHUB: VHN-160238 // NVD: CVE-2019-8803

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201910-1781

TYPE

code problem

Trust: 0.6

sources: CNNVD: CNNVD-201910-1781

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-011304

PATCH

title:About the security content of iCloud for Windows 11.0url:https://support.apple.com/en-us/HT210727

Trust: 0.8

title:About the security content of iCloud for Windows 7.15url:https://support.apple.com/en-us/HT210728

Trust: 0.8

title:About the security content of iOS 13.2 and iPadOS 13.2url:https://support.apple.com/en-us/HT210721

Trust: 0.8

title:About the security content of Xcode 11.2url:https://support.apple.com/en-us/HT210729

Trust: 0.8

title:About the security content of macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006url:https://support.apple.com/en-us/HT210722

Trust: 0.8

title:About the security content of tvOS 13.2url:https://support.apple.com/en-us/HT210723

Trust: 0.8

title:About the security content of watchOS 6.1url:https://support.apple.com/en-us/HT210724

Trust: 0.8

title:About the security content of Safari 13.0.3url:https://support.apple.com/en-us/HT210725

Trust: 0.8

title:About the security content of iTunes 12.10.2 for Windowsurl:https://support.apple.com/en-us/HT210726

Trust: 0.8

title:Mac に搭載されている macOS を調べるurl:https://support.apple.com/ja-jp/HT201260

Trust: 0.8

title:Multiple Apple product App Store Fixes for component code issue vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=105861

Trust: 0.6

sources: JVNDB: JVNDB-2019-011304 // CNNVD: CNNVD-201910-1781

EXTERNAL IDS

db:NVDid:CVE-2019-8803

Trust: 2.8

db:JVNid:JVNVU96749516

Trust: 0.8

db:JVNDBid:JVNDB-2019-011304

Trust: 0.8

db:CNNVDid:CNNVD-201910-1781

Trust: 0.7

db:PACKETSTORMid:155069

Trust: 0.7

db:AUSCERTid:ESB-2019.4013

Trust: 0.6

db:VULHUBid:VHN-160238

Trust: 0.1

db:PACKETSTORMid:155065

Trust: 0.1

db:PACKETSTORMid:155058

Trust: 0.1

sources: VULHUB: VHN-160238 // JVNDB: JVNDB-2019-011304 // PACKETSTORM: 155065 // PACKETSTORM: 155069 // PACKETSTORM: 155058 // CNNVD: CNNVD-201910-1781 // NVD: CVE-2019-8803

REFERENCES

url:https://support.apple.com/ht210721

Trust: 1.7

url:https://support.apple.com/ht210722

Trust: 1.7

url:https://support.apple.com/ht210723

Trust: 1.7

url:https://support.apple.com/ht210724

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2019-8803

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2019-8812

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8785

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8797

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8786

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8798

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8787

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8816

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8820

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8794

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8811

Trust: 1.1

url:https://nvd.nist.gov/vuln/detail/cve-2019-8822

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8813

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8823

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8814

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8815

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8819

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8782

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8783

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8821

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8795

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-8750

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8764

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8765

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8766

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8788

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8804

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8775

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8789

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8793

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8743

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8747

Trust: 0.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-8784

Trust: 0.9

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8788

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8803

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8815

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8766

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8735

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8789

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8804

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8816

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8775

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8793

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8805

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8710

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8819

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8782

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8794

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8807

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8743

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8820

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8783

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8795

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8811

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8747

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8821

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8784

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8797

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8812

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8750

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8822

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8785

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8798

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8813

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8764

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8823

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8786

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8802

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8814

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8765

Trust: 0.8

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8787

Trust: 0.8

url:https://jvn.jp/vu/jvnvu96749516/

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2019-8802

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2019-8805

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2019-8710

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2019-8807

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2019-8735

Trust: 0.8

url:https://support.apple.com/en-au/ht201222

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2019.4013/

Trust: 0.6

url:https://vigilance.fr/vulnerability/apple-macos-multiple-vulnerabilities-30747

Trust: 0.6

url:https://packetstormsecurity.com/files/155069/apple-security-advisory-2019-10-29-3.html

Trust: 0.6

url:https://support.apple.com/en-us/ht210723

Trust: 0.6

url:https://support.apple.com/en-us/ht210722

Trust: 0.6

url:https://support.apple.com/kb/ht201222

Trust: 0.3

url:https://www.apple.com/support/security/pgp/

Trust: 0.3

url:https://nvd.nist.gov/vuln/detail/cve-2019-8808

Trust: 0.3

url:https://nvd.nist.gov/vuln/detail/cve-2017-7152

Trust: 0.2

url:https://support.apple.com/kb/ht204641

Trust: 0.1

url:https://www.apple.com/itunes/

Trust: 0.1

sources: VULHUB: VHN-160238 // JVNDB: JVNDB-2019-011304 // PACKETSTORM: 155065 // PACKETSTORM: 155069 // PACKETSTORM: 155058 // CNNVD: CNNVD-201910-1781 // NVD: CVE-2019-8803

CREDITS

Apple

Trust: 0.9

sources: PACKETSTORM: 155065 // PACKETSTORM: 155069 // PACKETSTORM: 155058 // CNNVD: CNNVD-201910-1781

SOURCES

db:VULHUBid:VHN-160238
db:JVNDBid:JVNDB-2019-011304
db:PACKETSTORMid:155065
db:PACKETSTORMid:155069
db:PACKETSTORMid:155058
db:CNNVDid:CNNVD-201910-1781
db:NVDid:CVE-2019-8803

LAST UPDATE DATE

2024-11-23T21:07:38.218000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-160238date:2019-12-26T00:00:00
db:JVNDBid:JVNDB-2019-011304date:2020-01-07T00:00:00
db:CNNVDid:CNNVD-201910-1781date:2021-11-03T00:00:00
db:NVDid:CVE-2019-8803date:2024-11-21T04:50:30.270

SOURCES RELEASE DATE

db:VULHUBid:VHN-160238date:2019-12-18T00:00:00
db:JVNDBid:JVNDB-2019-011304date:2019-11-01T00:00:00
db:PACKETSTORMid:155065date:2019-11-01T17:10:20
db:PACKETSTORMid:155069date:2019-11-01T17:11:43
db:PACKETSTORMid:155058date:2019-11-01T17:05:53
db:CNNVDid:CNNVD-201910-1781date:2019-10-30T00:00:00
db:NVDid:CVE-2019-8803date:2019-12-18T18:15:42.850