PT-2019-2527 · Apple · Macos Mojave+2

Ian Beer

Published

2019-03-05

Updated

2020-08-24

CVE-2019-6208

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions iOS versions prior to 12.1.3 macOS Mojave versions prior to 10.14.3 tvOS versions prior to 12.1.2

Description A memory initialization issue was addressed with improved memory handling. This issue may allow a malicious application to cause unexpected changes in memory shared between processes, potentially enabling an attacker to make unauthorized changes in the shared memory using specially crafted executable files.

Recommendations For iOS versions prior to 12.1.3, update to iOS 12.1.3 or later. For macOS Mojave versions prior to 10.14.3, update to macOS Mojave 10.14.3 or later. For tvOS versions prior to 12.1.2, update to tvOS 12.1.2 or later.

Exploit

Fix

Improper Initialization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-665CWE-399

Related Identifiers

BDU:2019-02370

CVE-2019-6208

Affected Products

Ios

Macos Mojave

Tvos

PT-2019-2527 · Apple · Macos Mojave+2

CVE-2019-6208

Weakness Enumeration

Related Identifiers

Affected Products

References · 9