CVE-2019-6200

Опубликовано: 05 мар. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 5.8

EPSS Низкий

Описание

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3. An attacker in a privileged network position may be able to execute arbitrary code.

Ссылки

http://www.securityfocus.com/bid/106694
Third Party Advisory
https://support.apple.com/HT209443
Vendor Advisory
https://support.apple.com/HT209446
Vendor Advisory
http://www.securityfocus.com/bid/106694
Third Party Advisory
https://support.apple.com/HT209443
Vendor Advisory
https://support.apple.com/HT209446
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 12.1.3 (исключая)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.14.3 (исключая)

EPSS

Процентиль: 38%

0.00162

Низкий

8.8 High

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

GHSA-4pfp-qxm8-vq65