CVE-2019-8756 — Vulnetix

CVE-2019-8756 PUBLISHED CVSS 9.800000190734863 CRITICAL

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iTunes 12.10.1 for Windows. Multiple issues in libxml2.

EPSS 1.25% · 79.7th percentile

Risk Scores

CVSS 3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

1.25%

79.7th percentile

Affected Products

Vendor	Product	Versions
apple	itunes	0
apple	mac_os_x	0
apple	watchos	0
Apple	watchOS	unspecified
Apple	macOS	unspecified, unspecified, unspecified
Apple	iOS	unspecified
apple	icloud	10.0, 0
Apple	tvOS	unspecified
apple	tvos	0

Exploit Intelligence

https://support.apple.com/en-us/HT210634 (circl)
https://support.apple.com/en-us/HT210722 (circl)
https://support.apple.com/en-us/HT210604 (circl)
https://support.apple.com/en-us/HT210606 (circl)
https://support.apple.com/en-us/HT210607 (circl)
https://support.apple.com/en-us/HT210635 (circl)
https://support.apple.com/en-us/HT210636 (circl)
https://support.apple.com/en-us/HT210637 (circl)

Timeline

Oct 30, 2019 CVE Published
Oct 31, 2019 CVE Updated
Apr 14, 2021 EPSS Score
Jun 23, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Oct 26, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Feb 28, 2022 EPSS Score
May 1, 2022 EPSS Score
Jul 3, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Nov 6, 2022 EPSS Score

References

Open in Interactive Console →