Watchos - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Watchos
(Apple)

Repositories	• https://github.com/madler/zlib • https://github.com/file/file • https://github.com/WebKit/webkit
#Vulnerabilities	1402

Date	Id	Summary	Products	Score	Patch	Annotated
2020-10-27	CVE-2019-8830	An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iOS 12.4.4, watchOS 5.3.4. Processing malicious video via FaceTime may lead to arbitrary code execution.	Ipados, Iphone_os, Mac_os_x, Tvos, Watchos	8.8
2020-10-27	CVE-2019-8809	A validation issue was addressed with improved logic. This issue is fixed in macOS Catalina 10.15, iOS 13.1 and iPadOS 13.1, tvOS 13, watchOS 6, iOS 13. A local app may be able to read a persistent account identifier.	Ipados, Iphone_os, Mac_os_x, Tvos, Watchos	3.3
2020-10-27	CVE-2019-8796	A logic issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, iOS 12.4.3, watchOS 6.1, iOS 13.2 and iPadOS 13.2. AirDrop transfers may be unexpectedly accepted while in Everyone mode.	Ipados, Iphone_os, Mac_os_x, Watchos	5.3
2020-10-27	CVE-2018-4448	A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.1.1, watchOS 5.1.2, macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra, tvOS 12.1.1. A local user may be able to read kernel memory.	Iphone_os, Mac_os_x, Tvos, Watchos	5.5
2020-10-27	CVE-2019-8612	A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, tvOS 12.3, watchOS 5.2.1, macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3. An attacker in a privileged network position can modify driver state.	Iphone_os, Mac_os_x, Tvos, Watchos	6.5
2020-10-27	CVE-2019-8573	An input validation issue was addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, watchOS 5.2.1. A remote attacker may be able to cause a system denial of service.	Iphone_os, Mac_os_x, Watchos	7.5
2020-10-27	CVE-2019-8532	A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in watchOS 5.2, iOS 12.2. A malicious application may be able to access restricted files.	Iphone_os, Watchos	5.5
2020-10-27	CVE-2018-4391	An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, watchOS 4.3, iOS 12.1. Processing a maliciously crafted text message may lead to UI spoofing.	Iphone_os, Mac_os_x, Watchos	5.5
2020-10-27	CVE-2018-4390	An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, watchOS 4.3, iOS 12.1. Processing a maliciously crafted text message may lead to UI spoofing.	Iphone_os, Mac_os_x, Watchos	5.5
2020-10-22	CVE-2020-3918	An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A local user may be able to view sensitive user information.	Ipad_os, Iphone_os, Mac_os_x, Tvos, Watchos	5.5