CVE-2019-7290

10CRITICAL

Key Information:

Vendor: Apple
Status: Shortcuts
Vendor: CVE Published:; 18 December 2019

Summary

An access issue was addressed with additional sandbox restrictions. This issue is fixed in Shortcuts 2.1.3 for iOS. A sandboxed process may be able to circumvent sandbox restrictions.

Affected Version(s)

Shortcuts < unspecified

References

https://support.apple.com/HT209522

x_refsource_MISC

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Dec 18, 2019
Vulnerability Reserved
Jan 31, 2019