CVE-2019-7287

HIGH KEV

iOS <12.1.4 - Memory Corruption

Title source: llm

Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4. An application may be able to execute arbitrary code with kernel privileges.

References (2)

[Release Notes, Vendor Advisory] https://support.apple.com/HT209520

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-7287

Scores

CVSS v3 7.8

EPSS 0.0487

EPSS Percentile 89.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-05-23

VulnCheck KEV 2019-02-07

InTheWild.io 2019-02-07

ENISA EUVD EUVD-2019-16831

CWE

CWE-787

Status published

Products (1)

apple/iphone_os < 12.1.4

Published Dec 18, 2019

KEV Added May 23, 2022

Tracked Since Feb 18, 2026