Published: 18/12/2019 Updated: 20/12/2019

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

An authentication issue was addressed with improved state management. This issue is fixed in tvOS 13. A local user may be able to leak sensitive user information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os
apple tvos

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-10-29-6 Additional information for APPLE-SA-2019-9-26-3 iOS 13  <!--X-Head-of ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-10-29-9 Additional information for APPLE-SA-2019-9-26-6 tvOS 13  <!--X-Head-o ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-9-26-6 tvOS 13   From: Apple Product Security via F ...

Got a pre-A12 iPhone? Love jailbreaks? Happy Friday! 'Unpatchable tethered Boot ROM exploit' released

The Register • Shaun Nichols in San Francisco • 27 Sep 2019

Coder claims iThings older than two years can be unlocked from Apple's clutches

A programmer claims to have found a way to execute arbitrary code on recent-ish iPhones and iPads, paving the way for full-blown tethered jailbreaks. And, we're told, it is impossible for Apple to block these shenanigans as it involves a vulnerability baked into the devices' immutable Boot ROM. Specifically, the coder, who goes by the handle axi0mX, on Friday said they had built checkm8: "A permanent unpatchable bootrom exploit for hundreds of millions of iOS devices ... Most generations of iPho...

CVE-2019-8704

Vulnerability Summary

Vulnerability Trend

Mailing Lists

Recent Articles

References

Vulmon Search

About

Products

Connect