Published: 18/12/2019 Updated: 21/07/2021

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The issue was addressed with improved handling of service worker lifetime. This issue is fixed in Safari 13.0.1. Service workers may leak private browsing history.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple safari

Got a pre-A12 iPhone? Love jailbreaks? Happy Friday! 'Unpatchable tethered Boot ROM exploit' released

The Register • Shaun Nichols in San Francisco • 27 Sep 2019

Coder claims iThings older than two years can be unlocked from Apple's clutches

A programmer claims to have found a way to execute arbitrary code on recent-ish iPhones and iPads, paving the way for full-blown tethered jailbreaks. And, we're told, it is impossible for Apple to block these shenanigans as it involves a vulnerability baked into the devices' immutable Boot ROM. Specifically, the coder, who goes by the handle axi0mX, on Friday said they had built checkm8: "A permanent unpatchable bootrom exploit for hundreds of millions of iOS devices ... Most generations of iPho...

CVE-2019-8725

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect