CyberSec.Space Logo
Back to CVE Browser

CVE-2019-6235

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1740%
EPSS Percentile25.50th
PublishedMar 4, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions.

Affected Platforms (CPE)

πŸ“¦
Apple

Itunes

< 12.9.3
πŸ’»
Apple

Iphone Os

< 12.1.3
πŸ’»
Apple

Mac Os X

< 10.14.3
πŸ’»
Apple

Tv Os

< 12.1.2
πŸ’»
Apple

Watch Os

< 5.1.3

References & Advisories

πŸ”— http://www.securityfocus.com/bid/106724
πŸ”— https://support.apple.com/HT209443
πŸ”— https://support.apple.com/HT209446
πŸ”— https://support.apple.com/HT209447
πŸ”— https://support.apple.com/HT209448
πŸ”— https://support.apple.com/HT209450
πŸ”— http://www.securityfocus.com/bid/106724
πŸ”— https://support.apple.com/HT209443

Related Vulnerabilities

CVE-2010-176910.0

WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, accesses out-of-bounds memory d...

CVE-2010-176310.0

Unspecified vulnerability in WebKit in Apple iTunes before 9.2 on Windows has unknown impact and attack vectors, a different vulne...

CVE-2019-86009.8

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvO...

CVE-2018-41479.8

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory c...