CVE-2019-8613

Опубликовано: 18 дек. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. A remote attacker may be able to cause arbitrary code execution.

Ссылки

https://support.apple.com/HT210118
Vendor Advisory
https://support.apple.com/HT210120
Vendor Advisory
https://support.apple.com/HT210122
Vendor Advisory
https://support.apple.com/HT210118
Vendor Advisory
https://support.apple.com/HT210120
Vendor Advisory
https://support.apple.com/HT210122
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 12.3 (исключая)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Версия до 12.3 (исключая)

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

Версия до 5.2.1 (исключая)

EPSS

Процентиль: 90%

0.05707

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-416

Связанные уязвимости

GHSA-xx2p-7x2v-j239

github

около 3 лет назад