Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAppleCVE-2019-8692
HistoryDec 18, 2019 - 6:15 p.m.

CVE-2019-8692

2019-12-1818:15:35
CWE-125
apple
web.nvd.nist.gov
40
cve-2019-8692
macos mojave
validation issue
input sanitization
memory access
nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.6

Confidence

High

EPSS

0

Percentile

15.9%

JSON

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.6. An application may be able to read restricted memory.

Affected configurations

Nvd
Vulners
Node
applemac_os_xRange<10.14.6
VendorProductVersionCPE
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "macOS Mojave 10.14.6",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

zdi 2
prion 1
cvelist 1
nvd 1
openvas 1
nessus 2
apple 2
zdi
zdi
Apple macOS AMDRadeonX4000_AMDAccelResource initialize Out-Of-Bounds Read Privilege Escalation Vulnerability
2019-07-24 00:00:00
Apple macOS AMDRadeonX4000 Out-Of-Bounds Read Information Disclosure Vulnerability
2019-09-10 00:00:00
prion
prion
Input validation
2019-12-18 18:15:00
cvelist
cvelist
CVE-2019-8692
2019-12-18 17:33:21
nvd
nvd
CVE-2019-8692
2019-12-18 18:15:35
openvas
openvas
Apple Mac OS X Security Updates (HT210348)-03
2019-07-23 00:00:00
nessus
nessus
macOS 10.14.x < 10.14.6 Multiple Vulnerabilities
2019-07-26 00:00:00
macOS Sierra / High Sierra Multiple Vulnerabilities (Security Update 2019-004)
2019-07-26 00:00:00
apple
apple
About the security content of macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra - Apple Support
2020-06-25 07:44:38
About the security content of macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra
2019-07-22 00:00:00

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.6

Confidence

High

EPSS

0

Percentile

15.9%

JSON
Related for CVE-2019-8692
zdi2prion1cvelist1nvd1openvas1nessus2apple2