Published: 18/12/2019 Updated: 20/12/2019

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 765

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain root privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os
apple mac os x

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Local Rank = ExcellentRanking include Msf::Post::File include Msf::Post::OSX::Priv include Msf::Post::OSX::System include Msf::Exploit::EXE include Msf::Exp ...

This Metasploit module exploits a race condition vulnerability in Mac's Feedback Assistant A successful attempt would result in remote code execution under the context of root ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-3-25-1 iOS 122   From: Apple Product Security via ...

CWE-362 https://support.apple.com/HT209600 https://support.apple.com/HT209599 https://nvd.nist.gov https://www.exploit-db.com/exploits/46914

CVE-2019-8565

Vulnerability Summary

Vulnerability Trend

Exploits

Mailing Lists

References

Vulmon Search

About

Products

Connect