VYPR

macOS

by Apple Inc.

CVEs (3,266)

  • CVE-2019-8598Dec 18, 2019
    risk 0.00cvss epss 0.10

    An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A malicious application may be able to read restricted memory.

  • CVE-2019-8602Dec 18, 2019
    risk 0.00cvss epss 0.10

    A memory corruption issue was addressed by removing the vulnerable code. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A malicious application may be able to elevate privileges.

  • CVE-2019-8546Dec 18, 2019
    risk 0.00cvss epss 0.00

    An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A local user may be able to view sensitive user information.

  • CVE-2019-8533Dec 18, 2019
    risk 0.00cvss epss 0.00

    A lock handling issue was addressed with improved lock handling. This issue is fixed in macOS Mojave 10.14.4. A Mac may not lock when disconnecting from an external monitor.

  • CVE-2019-8537Dec 18, 2019
    risk 0.00cvss epss 0.00

    An access issue was addressed with improved memory management. This issue is fixed in macOS Mojave 10.14.4. A local user may be able to view a user’s locked notes.

  • CVE-2019-8527Dec 18, 2019
    risk 0.00cvss epss 0.03

    A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.

  • CVE-2019-8545Dec 18, 2019
    risk 0.00cvss epss 0.00

    A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to cause unexpected system termination or read kernel memory.

  • CVE-2019-8550Dec 18, 2019
    risk 0.00cvss epss 0.01

    An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A user’s video may not be paused in a FaceTime call if they exit the FaceTime app while the call is ringing.

  • CVE-2019-8590Dec 18, 2019
    risk 0.00cvss epss 0.01

    A logic issue was addressed with improved restrictions. This issue is fixed in macOS Mojave 10.14.5. An application may be able to execute arbitrary code with kernel privileges.

  • CVE-2019-8530Dec 18, 2019
    risk 0.00cvss epss 0.01

    This issue was addressed with improved checks. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2. A malicious application may be able to overwrite arbitrary files.

  • CVE-2019-8540Dec 18, 2019
    risk 0.00cvss epss 0.02

    A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

  • CVE-2019-8542Dec 18, 2019
    risk 0.00cvss epss 0.01

    A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious application may be able to elevate privileges.

  • CVE-2019-8549Dec 18, 2019
    risk 0.00cvss epss 0.01

    Multiple input validation issues existed in MIG generated code. These issues were addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to execute arbitrary code with system…

  • CVE-2019-8555Dec 18, 2019
    risk 0.00cvss epss 0.01

    A buffer overflow was addressed with improved size validation. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to execute arbitrary code with kernel privileges.

  • CVE-2019-8552Dec 18, 2019
    risk 0.00cvss epss 0.01

    A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to elevate privileges.

  • CVE-2019-8529Dec 18, 2019
    risk 0.00cvss epss 0.00

    A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. An application may be able to execute arbitrary code with kernel privileges.

  • CVE-2019-8502Dec 18, 2019
    risk 0.00cvss epss 0.01

    An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user…

  • CVE-2019-8519Dec 18, 2019
    risk 0.00cvss epss 0.00

    An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. An application may be able to read restricted memory.

  • CVE-2019-8511Dec 18, 2019
    risk 0.00cvss epss 0.01

    A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A malicious application may be able to elevate privileges.

  • CVE-2019-8508Dec 18, 2019
    risk 0.00cvss epss 0.00

    A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges.

Page 158 of 164