CVE-2019-8595

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 12.3 Apple macOS versions prior to 10.14.5 Apple tvOS versions prior to 12.3 Apple Safari versions prior to 12.1.1 Apple iTunes for Windows versions prior to 12.9.5 Apple iCloud for Windows versions prior to 7.12

Description The issue is related to memory corruption and can be triggered by processing maliciously crafted web content, potentially leading to arbitrary code execution. It is also associated with a buffer overflow in WebKitGTK and WPE WebKit modules, which can be exploited by a remote attacker using a specially crafted web page or file to execute arbitrary code.

Recommendations For iOS versions prior to 12.3, update to iOS 12.3 or later. For macOS versions prior to 10.14.5, update to macOS Mojave 10.14.5 or later. For tvOS versions prior to 12.3, update to tvOS 12.3 or later. For Safari versions prior to 12.1.1, update to Safari 12.1.1 or later. For iTunes for Windows versions prior to 12.9.5, update to iTunes for Windows 12.9.5 or later. For iCloud for Windows versions prior to 7.12, update to iCloud for Windows 7.12 or later.