CVE-2019-8633

HIGH

iPhone OS <12.3, macOS 10.13.6-10.14.5, tvOS <12.3, watchOS <5.3 - Unauthorized Memory Read

Title source: llm
STIX 2.1

Description

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3, watchOS 5.3. An application may be able to read restricted memory.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210119
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210118
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210120
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210353

Scores

CVSS v3 7.5
EPSS 0.0115
EPSS Percentile 63.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-20
Status published
Products (4)
apple/iphone_os < 12.3
apple/mac_os_x 10.13.6 - 10.14.5
apple/tvos < 12.3
apple/watchos < 5.3
Published Oct 27, 2020
Tracked Since Feb 18, 2026