CyberSec.Space Logo
Back to CVE Browser

CVE-2019-7286

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score37.0190%
EPSS Percentile90.94th
PublishedDec 18, 2019
Last ModifiedOct 23, 2025

Vulnerability Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges.

Affected Platforms (CPE)

πŸ’»
Apple

Iphone Os

< 12.1.4
πŸ’»
Apple

Mac Os X

< 10.14.3

References & Advisories

πŸ”— https://support.apple.com/HT209520
πŸ”— https://support.apple.com/HT209521
πŸ”— https://support.apple.com/HT209601
πŸ”— https://support.apple.com/HT209602
πŸ”— https://support.apple.com/HT209520
πŸ”— https://support.apple.com/HT209521
πŸ”— https://support.apple.com/HT209601
πŸ”— https://support.apple.com/HT209602

Related Vulnerabilities

CVE-2008-421110.0

Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iP...

CVE-2009-220410.0

Unspecified vulnerability in the CoreTelephony component in Apple iPhone OS before 3.0.1 allows remote attackers to execute arbitr...

CVE-2008-230310.0

Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitra...

CVE-2010-111910.0

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on ...