CVE-2019-8605 — Vulnetix

Try Vulnetix Request Demo

CVE-2019-8605 PUBLISHED KEV CVSS 9.300000190734863 CRITICAL

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges.

EPSS 12.39% · 93.8th percentile

Risk Scores

CVSS v2.0

9.300000190734863

EPSS Score

12.39%

93.8th percentile

Affected Products

Vendor	Product	Versions
Apple	watchOS	unspecified
Apple	iOS	unspecified
Apple	N/A
apple	watchos	0
Apple	tvOS	unspecified
apple	iphone_os	0
apple	tvos	0
Apple	macOS	unspecified
apple	mac_os_x	0

Timeline

May 21, 2019 PoC Published
May 21, 2019 PoC Published
Dec 18, 2019 CVE Published
Oct 9, 2020 PoC Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Dec 25, 2021 EPSS Score
Feb 25, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 27, 2022 CISA KEV Added
Aug 31, 2022 EPSS Score

References

https://support.apple.com/HT210118 url
https://support.apple.com/HT210119 url
https://support.apple.com/HT210120 url
https://support.apple.com/HT210122 url
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-8605 url
https://nvd.nist.gov/vuln/detail/CVE-2019-8605 advisory
https://support.apple.com/en-us/HT210548 advisory
https://support.apple.com/en-us/HT210550 advisory
https://support.apple.com/en-us/HT210549 advisory
https://support.apple.com/en-us/HT210122 advisory
https://support.apple.com/en-us/HT210123 advisory
https://support.apple.com/en-us/HT210120 advisory
https://support.apple.com/en-us/HT210118 advisory
https://support.apple.com/en-us/HT210119 advisory
https://support.apple.com/en-us/HT210121 advisory

Open in Interactive Console →