Memory Corruption Vulnerabilities in Apple Products
CVE-2019-8686

8.8HIGH

Key Information:

Vendor

Apple
Status
iOS
Mac OS
TV OS
Safari
Vendor
CVE Published:
18 December 2019

What is CVE-2019-8686?

Multiple memory corruption issues were identified in various Apple operating systems and products, potentially allowing attackers to execute arbitrary code via maliciously crafted web content. Apple has addressed these vulnerabilities by implementing improved memory handling techniques in their software updates. Users are encouraged to update to the latest versions to mitigate the associated risks.

Affected Version(s)

iCloud for Windows < unspecified

iCloud for Windows (Microsoft Store) < unspecified

iOS < unspecified

References

https://support.apple.com/HT210346
x_refsource_MISC
https://support.apple.com/HT210348
x_refsource_MISC
https://support.apple.com/HT210351
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.