PT-2020-11240 · Apple · Facetime+2

Published

2020-10-27

Updated

2020-10-30

CVE-2019-7288

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS Mojave versions prior to 10.14.3 Supplemental Update iOS versions prior to 12.1.4

Description The issue was related to the FaceTime service, specifically with Live Photos, and was addressed with improved validation on the FaceTime server. A thorough security audit of the FaceTime service uncovered this issue.

Recommendations For macOS Mojave versions prior to 10.14.3 Supplemental Update, update to macOS Mojave 10.14.3 Supplemental Update. For iOS versions prior to 12.1.4, update to iOS 12.1.4.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-7288

Affected Products

Facetime

Ios

Macos Mojave

PT-2020-11240 · Apple · Facetime+2

CVE-2019-7288

Related Identifiers

Affected Products

References · 4