Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.6
CVSSv2

CVE-2019-8900

Vulnerability Summary

A vulnerability in the Boot ROM of some Apple devices can be exploited by an unauthenticated local malicious user to execute arbitrary code upon booting those devices. The Boot ROM, which is located within the processor, contains the first code executed by the processor upon booting the device. Because the Boot ROM is read-only, it cannot be patched with a firmware update.Apple devices that implement processing chips A5 through A11 are vulnerable. This corresponds to iPhone models 4S through X; additionally, certain models of iPad, Apple Watch, iPod Touch, and Apple TV are vulnerable. See the Malwarebytes blog entry for a full list of affected devices. Further details about the vulnerability are available in Ars Technica's interview with the vulnerability's discoverer.

Vulnerability Trend

Github Repositories

https://github.com/0rShemesh/iOS-Capocannoniere

My journey to gain knowledge in the iPhone space

My main goal is to learn and have a-lot of knowledge about iOS SO for new comers like me i want to document all my steps I'm doing for taking some inspiration or learn from my mistakes 😜 Join to my journey! Running Checkm8 exploit exploit first time Milestone Steps buy 2nd *Phone vulnerable to checkm8 exploit the *Phone Checkm8 exploit install list: ssh oh-my

https://github.com/Le0JB/iPhone-Jailbreak-Tools

All iOS Jailbreak Tools List for iOS 8 - iOS 17

All iOS Jailbreak Tools List for iOS 8 - iOS 17 This repository contains a list of all iOS jailbreak tools from iOS 8 to iOS 17 for iPhone and iPad devices Jailbreak Tool Description iOS and iPadOS Compatibility Installation Dopamine Jailbreak Dopamine is a rootless jailbreak tool for arm64 (A9 - A11) and arm64e (A12 - A16, M1 - M2) devices running iOS 150 - 1661 iO

References

https://github.com/0rShemesh/iOS-Capocannonierehttps://www.kb.cert.org/vuls/id/941987
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypassopen redirectCVE-2024-4358CVE-2024-24199CVE-2024-5550CVE-2024-5305CVE-2024-30373CVE-2024-1800deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook