Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2019-6207

Published: 18/12/2019 Updated: 22/12/2019
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 188
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Apple

Vulnerability Summary

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple iphone os

apple mac os x

apple tvos

apple watchos

Mailing Lists

Full Disclosure: APPLE-SA-2019-3-25-1 iOS 12.2
<!--X-Body-Begin--> <!--X-User-Header--> Full Disclosure mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> APPLE-SA-2019-3-25-1 iOS 122 <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Apple Product Security via ...

Github Repositories

https://github.com/dothanthitiendiettiende/CVE-2019-6207

getdirentriesattr kernel heap inofo leak

CVE-2019-6207 getdirentriesattr kernel heap inofo leak this vulneriliabity can be tirgger at sandbox at macOS&lt;=10144 &amp;&amp;ios &lt; 122 I will update more details about this vulneriliabity

https://github.com/DimitriFourny/cve-2019-6207

MacOS kernel memory leak (4 bytes)

CVE-2019-6207 $ clang exploitc -o exploit $ /exploit CVE-2019-6207 exploit to leak 4 bytes of arbitrary kernel memory Tested on MacOS 10141, should works on: MacOS &lt; 10144 ; iOS &lt; 122 ; tvOS &lt; 122 ; watchOS &lt; 52 Buffer length = 0x188 rt_msghdrrtm_inits (+0x20): 0x00001000 rt_msghdrrtm_inits (+0x20): 0x0075002F rt_msghdrrtm_inits (+0x20)

https://github.com/maldiohead/CVE-2019-6207

xnu kernel heap info leak

CVE-2019-6207 this vulneriliabity can be trigger in sandbox at macOS&lt; 10145 &amp;&amp;ios &lt; 122 I will update more details about this vulneriliabity There is a bug in sysctl_dumpentry ,which can leak the heap info Details: 1Like the function description sysctl_dumpentry is used in dumping the kernel table via sysctl(),this function will malloc a b

References

CWE-125https://support.apple.com/HT209601https://support.apple.com/HT209600https://support.apple.com/HT209599https://support.apple.com/HT209602https://nvd.nist.govhttps://github.com/dothanthitiendiettiende/CVE-2019-6207http://seclists.org/fulldisclosure/2019/Mar/58
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook