Memory Corruption Issues in Apple Products
CVE-2019-8844

8.8HIGH

Key Information:

Vendor
Apple
Status
iOS And iPad OS
Watch OS
TV OS
Safari
Vendor
CVE Published:
27 October 2020

Summary

Apple addressed multiple memory corruption issues that could be exploited through specially crafted web content, potentially leading to arbitrary code execution on affected devices. This vulnerability highlights the importance of maintaining updated software to safeguard against exploitation.

Affected Version(s)

iCloud for Windows < 10.9

iCloud for Windows < 7.16

iOS and iPadOS < 13.3

References

https://support.apple.com/en-us/HT210785
x_refsource_MISC
https://support.apple.com/en-us/HT210789
x_refsource_MISC
https://support.apple.com/en-us/HT210790
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.