01

Researcher fromTrend Micro Zero Day Initiative
#14287of 53,619
18.8Total CVSS
Vulnerabilities · 2
High
2
PT-2019-5333
10
2019-05-20
Apple · Icloud · CVE-2019-8571
**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.3 macOS Mojave versions prior to 10.14.5 tvOS versions prior to 12.3 Safari versions prior to 12.1.1 iTunes for Windows versions prior to 12.9.5 iCloud for Windows versions prior to 7.12 **Description** The issue is related to memory corruption, allowing a remote attacker to execute arbitrary code by processing maliciously crafted web content. This can be achieved through the use of `WebDataListSuggestionPicker` in Safari, which is vulnerable to use-after-free remote code execution. **Recommendations** For iOS versions prior to 12.3, update to iOS 12.3 or later. For macOS Mojave versions prior to 10.14.5, update to macOS Mojave 10.14.5 or later. For tvOS versions prior to 12.3, update to tvOS 12.3 or later. For Safari versions prior to 12.1.1, update to Safari 12.1.1 or later. For iTunes for Windows versions prior to 12.9.5, update to iTunes for Windows 12.9.5 or later. For iCloud for Windows versions prior to 7.12, update to iCloud for Windows 7.12 or later.
PT-2019-5344
8.8
2019-05-20
Apple · Icloud · CVE-2019-8597
**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 12.3 macOS Mojave versions prior to 10.14.5 tvOS versions prior to 12.3 Safari versions prior to 12.1.1 iTunes for Windows versions prior to 12.9.5 iCloud for Windows versions prior to 7.12 **Description** The issue is related to accessing resources through incompatible types and memory corruption problems. It may allow a remote attacker to gain unauthorized access to protected information. Processing maliciously crafted web content can lead to arbitrary code execution. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For iOS versions prior to 12.3, update to iOS 12.3 or later. For macOS Mojave versions prior to 10.14.5, update to macOS Mojave 10.14.5 or later. For tvOS versions prior to 12.3, update to tvOS 12.3 or later. For Safari versions prior to 12.1.1, update to Safari 12.1.1 or later. For iTunes for Windows versions prior to 12.9.5, update to iTunes for Windows 12.9.5 or later. For iCloud for Windows versions prior to 7.12, update to iCloud for Windows 7.12 or later.