Back to CVE Browser

CVE-2019-8746

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.1780%

EPSS Percentile44.69th

PublishedOct 27, 2020

Last ModifiedNov 21, 2024

Vulnerability Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iTunes 12.10.1 for Windows. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

Affected Platforms (CPE)

📦

Apple

Icloud

< 7.14

📦

Apple

Icloud

>= 10.0 and < 10.7

📦

Apple

Itunes

< 12.10.1

💻

Apple

Iphone Os

< 13.1

💻

Apple

Mac Os X

< 10.15

💻

Apple

Tvos

< 13

💻

Apple

Watchos

< 6.0

References & Advisories

🔗 https://support.apple.com/en-us/HT210604

🔗 https://support.apple.com/en-us/HT210606

🔗 https://support.apple.com/en-us/HT210607

🔗 https://support.apple.com/en-us/HT210634

🔗 https://support.apple.com/en-us/HT210635

🔗 https://support.apple.com/en-us/HT210636

🔗 https://support.apple.com/en-us/HT210637

🔗 https://support.apple.com/en-us/HT210722

Related Vulnerabilities

CVE-2019-86009.8

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvO...

CVE-2019-87509.8

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in watchOS 6.1, iCloud for Wi...

CVE-2018-41479.8

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory c...

CVE-2019-87499.8

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS ...