VDB
CVE-2019-6221
CVE-2019-6221
PUBLISHED
CVSS 6.800000190734863 MEDIUM
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, iTunes 12.9.3 for Windows. A malicious application may be able to elevate privileges.
EPSS 0.24% · 47.9th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
0.24%
47.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | itunes | 0 |
| Apple | iTunes for Windows | unspecified |
| apple | iphone_os | 0 |
| apple | mac_os_x | 0 |
| Apple | macOS | unspecified |
| Apple | iOS | unspecified |
Exploit Intelligence
- CIRCL seen: CVE-2019-6221 (circl-sighting)
- https://support.apple.com/HT209446 (circl)
- https://support.apple.com/HT209443 (circl)
- https://support.apple.com/HT209450 (circl)
- 106694 (circl)
Timeline
- Jan 23, 2019 CVE Published
- Jan 28, 2019 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- May 14, 2022 CVE Updated
References
- https://support.apple.com/en-us/HT209451 advisory
- https://support.apple.com/en-us/HT209447 advisory
- https://support.apple.com/en-us/HT209443 advisory
- https://support.apple.com/en-us/HT209449 advisory
- https://support.apple.com/en-us/HT209448 advisory
- https://support.apple.com/en-us/HT209446 advisory
- https://support.apple.com/HT209446 url
- https://support.apple.com/HT209443 url
- https://support.apple.com/HT209450 url
- 106694 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2019-6221 advisory