PT-2019-19156 · Apple · Tvos+1

Costin Carabaș

Published

2019-12-18

Updated

2019-12-20

CVE-2019-8698

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions iOS versions prior to 12.4 tvOS versions prior to 12.4

Description A validation issue existed in the entitlement verification, which could allow a malicious application to restrict access to websites. This issue was addressed with improved validation of the process entitlement.

Recommendations For iOS versions prior to 12.4, update to iOS 12.4 to resolve the issue. For tvOS versions prior to 12.4, update to tvOS 12.4 to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2019-8698

Affected Products

Ios

Tvos

PT-2019-19156 · Apple · Tvos+1

CVE-2019-8698

Weakness Enumeration

Related Identifiers

Affected Products

References · 4