PT-2019-19109 · Apple · Watchos+3
Riusksk
·
Published
2019-07-22
·
Updated
2021-07-21
·
CVE-2019-8592
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Apple macOS versions prior to 10.15
Apple macOS Mojave versions prior to 10.14.5
Apple tvOS versions prior to 12.3
Apple tvOS versions prior to 13
Apple watchOS versions prior to 5.2.1
Apple iOS versions prior to 12.3
Apple iOS versions prior to 13
Description
A memory corruption issue was addressed with improved input validation. Playing a malicious audio file may lead to arbitrary code execution.
Recommendations
For macOS versions prior to 10.15, update to macOS Catalina 10.15 or later.
For macOS Mojave versions prior to 10.14.5, apply Security Update 2019-003.
For tvOS versions prior to 12.3, update to tvOS 12.3 or later.
For tvOS versions prior to 13, update to tvOS 13 or later.
For watchOS versions prior to 5.2.1, update to watchOS 5.2.1 or later.
For iOS versions prior to 12.3, update to iOS 12.3 or later.
For iOS versions prior to 13, update to iOS 13 or later.
Fix
RCE
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ios
Apple Macos
Tvos
Watchos