Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Iphone_os
(Apple)| Repositories |
• https://github.com/madler/zlib
• https://github.com/file/file • https://github.com/WebKit/webkit • https://github.com/vadz/libtiff |
| #Vulnerabilities | 3637 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-12-18 | CVE-2019-6222 | A consistency issue was addressed with improved state handling. This issue is fixed in iOS 12.2. A website may be able to access the microphone without the microphone use indicator being shown. | Iphone_os | N/A | ||
| 2019-12-18 | CVE-2019-6204 | A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting. | Iphone_os, Safari | N/A | ||
| 2019-12-18 | CVE-2019-8760 | This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID. | Iphone_os | N/A | ||
| 2019-12-18 | CVE-2019-8552 | A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to elevate privileges. | Iphone_os, Mac_os_x, Tvos, Watchos | N/A | ||
| 2019-12-18 | CVE-2019-8551 | A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to universal cross site scripting. | Icloud, Iphone_os, Itunes, Safari, Tvos | N/A | ||
| 2019-12-18 | CVE-2019-8545 | A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to cause unexpected system termination or read kernel memory. | Iphone_os, Mac_os_x, Tvos, Watchos | N/A | ||
| 2019-12-18 | CVE-2019-8542 | A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious application may be able to elevate privileges. | Icloud, Iphone_os, Itunes, Mac_os_x, Tvos, Watchos | N/A | ||
| 2019-12-18 | CVE-2019-8541 | A privacy issue existed in motion sensor calibration. This issue was addressed with improved motion sensor processing. This issue is fixed in iOS 12.2, watchOS 5.2. A malicious app may be able to track users between installs. | Iphone_os, Watchos | N/A | ||
| 2019-12-18 | CVE-2019-8540 | A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout. | Iphone_os, Mac_os_x, Tvos, Watchos | N/A | ||
| 2019-12-18 | CVE-2019-8530 | This issue was addressed with improved checks. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2. A malicious application may be able to overwrite arbitrary files. | Iphone_os, Mac_os_x, Tvos | N/A |