Published: 27/10/2020 Updated: 29/10/2020

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iTunes 12.10.1 for Windows. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple icloud
apple itunes
apple iphone os
apple mac os x
apple tvos
apple watchos

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-10-29-6 Additional information for APPLE-SA-2019-9-26-3 iOS 13  <!--X-Head-of ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-10-29-9 Additional information for APPLE-SA-2019-9-26-6 tvOS 13  <!--X-Head-o ...

CWE-125 https://support.apple.com/en-us/HT210604 https://support.apple.com/en-us/HT210637 https://support.apple.com/en-us/HT210607 https://support.apple.com/en-us/HT210606 https://support.apple.com/en-us/HT210634 https://support.apple.com/en-us/HT210722 https://support.apple.com/en-us/HT210636 https://support.apple.com/en-us/HT210635 https://nvd.nist.gov http://seclists.org/fulldisclosure/2019/Oct/52

CVE-2019-8746

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect