CVE-2019-8717

Опубликовано: 18 дек. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15, tvOS 13. An application may be able to execute arbitrary code with kernel privileges.

Ссылки

https://support.apple.com/HT210634
Release Notes
Vendor Advisory
https://support.apple.com/kb/HT210722
Release Notes
Vendor Advisory
https://support.apple.com/HT210634
Release Notes
Vendor Advisory
https://support.apple.com/kb/HT210722
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.15 (исключая)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Версия до 13 (исключая)

EPSS

Процентиль: 72%

0.00727

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-wcgf-jrrf-r989

github

больше 3 лет назад