CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-8506

Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
EPSS Score83.7950%
EPSS Percentile94.57th
Published2019年12月18日
Last Modified2025年10月23日

Vulnerability Description

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

Affected Platforms (CPE)

📦
Apple

Icloud

< 7.11
📦
Apple

Itunes

< 12.9.4
📦
Apple

Safari

< 12.1
💻
Apple

Iphone Os

< 12.2
💻
Apple

Tvos

< 12.2
💻
Apple

Watchos

< 5.2
💻
Redhat

Enterprise Linux Desktop

= 7.0
💻
Redhat

Enterprise Linux Server

= 7.0
💻
Redhat

Enterprise Linux Workstation

= 7.0

References & Advisories

🔗 https://support.apple.com/HT209599
🔗 https://support.apple.com/HT209601
🔗 https://support.apple.com/HT209602
🔗 https://support.apple.com/HT209603
🔗 https://support.apple.com/HT209604
🔗 https://support.apple.com/HT209605
🔗 https://support.apple.com/HT209599
🔗 https://support.apple.com/HT209601

相关漏洞威胁

CVE-2019-86009.8

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvO...

CVE-2019-87509.8

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in watchOS 6.1, iCloud for Wi...

CVE-2018-41479.8

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory c...

CVE-2019-87469.8

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud fo...