Published: 18/12/2019 Updated: 30/12/2019

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious application may be able to elevate privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple icloud
apple itunes
apple iphone os
apple mac os x
apple tvos
apple watchos

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-3-25-5 iTunes 1294 for Windows   From: Apple Prod ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-3-25-1 iOS 122   From: Apple Product Security via ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-3-25-6 iCloud for Windows 711   From: Apple Produc ...

CWE-120 https://support.apple.com/HT209605 https://support.apple.com/HT209604 https://support.apple.com/HT209601 https://support.apple.com/HT209600 https://support.apple.com/HT209599 https://support.apple.com/HT209602 https://nvd.nist.gov http://seclists.org/fulldisclosure/2019/Mar/55

CVE-2019-8542

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect