CVE-2019-8781

HIGH

Apple Mac OS X < 10.15 - Out-of-Bounds Write

Title source: rule

Description

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with kernel privileges.

Exploits (2)

nomisec WORKING POC 293 stars

by A2nkF · poc

https://github.com/A2nkF/macOS-Kernel-Exploit

View Code ZIP pw:eip

nomisec WORKING POC 2 stars

by TrungNguyen1909 · poc

https://github.com/TrungNguyen1909/CVE-2019-8781-macOS

View Code ZIP pw:eip

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://support.apple.com/HT210634

Scores

CVSS v3 7.8

EPSS 0.1535

EPSS Percentile 94.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (1)

apple/mac_os_x < 10.15

Published Dec 18, 2019

Tracked Since Feb 18, 2026