PT-2019-19178 · Apple · Itunes For Windows+6

Published

2019-12-18

Updated

2021-07-21

CVE-2019-8734

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 13 Apple iCloud for Windows versions prior to 7.14 and 10.7 Apple Safari versions prior to 13 Apple tvOS versions prior to 13 Apple watchOS versions prior to 6 Apple iTunes for Windows versions prior to 12.10.1

Description The issue arises from multiple memory corruption problems related to memory handling, which can be exploited by processing maliciously crafted web content. This may lead to arbitrary code execution.

Recommendations For Apple iOS versions prior to 13, update to iOS 13 or later. For Apple iCloud for Windows versions prior to 7.14 and 10.7, update to iCloud for Windows 7.14 or 10.7 or later. For Apple Safari versions prior to 13, update to Safari 13 or later. For Apple tvOS versions prior to 13, update to tvOS 13 or later. For Apple watchOS versions prior to 6, update to watchOS 6 or later. For Apple iTunes for Windows versions prior to 12.10.1, update to iTunes 12.10.1 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2019-8734

Affected Products

Safari

Icloud For Windows

Ios

Itunes

Itunes For Windows

Tvos

Watchos

PT-2019-19178 · Apple · Itunes For Windows+6

CVE-2019-8734

Weakness Enumeration

Related Identifiers

Affected Products

References · 9