Medium severity6.1NVD Advisory· Published Dec 18, 2019· Updated Jun 17, 2026
CVE-2019-8658
CVE-2019-8658
Description
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3410.14.6+ 1 more
- (no CPE)range: 10.14.6
- (no CPE)range: unspecified
12.1.2+ 1 more
- (no CPE)range: 12.1.2
- (no CPE)range: unspecified
12.4+ 1 more
- (no CPE)range: 12.4
- (no CPE)range: unspecified
- osv-coords23 versionspkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/webkit2gtk3&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%205pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208
< 2.24.4-lp150.2.25.1+ 22 more
- (no CPE)range: < 2.24.4-lp150.2.25.1
- (no CPE)range: < 2.24.4-lp151.2.6.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-3.31.1
- (no CPE)range: < 2.24.4-3.31.1
- (no CPE)range: < 2.24.4-3.31.1
- (no CPE)range: < 2.24.4-3.31.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- (no CPE)range: < 2.24.4-2.47.1
- Range: unspecified
- Range: unspecified
- Range: unspecified
- Apple/iCloud for Windows (Microsoft Store)v5Range: unspecified
- Range: unspecified
Patches
Vulnerability mechanics
References
8- support.apple.com/HT210346nvdVendor Advisory
- support.apple.com/HT210348nvdVendor Advisory
- support.apple.com/HT210351nvdVendor Advisory
- support.apple.com/HT210353nvdVendor Advisory
- support.apple.com/HT210355nvdVendor Advisory
- support.apple.com/HT210356nvdVendor Advisory
- support.apple.com/HT210357nvdVendor Advisory
- support.apple.com/HT210358nvdVendor Advisory
News mentions
0No linked articles in our index yet.