Lucene search

[email protected]CVE-2019-8768

HistoryDec 18, 2019 - 6:15 p.m.

CVE-2019-8768

2019-12-1818:15:00

CWE-459

[email protected]

web.nvd.nist.gov

200

clear history

data deletion

macos catalina 10.15

cve-2019-8768

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

37.9%

JSON

“Clear History and Website Data” did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Catalina 10.15. A user may be unable to delete browsing history items.

CPENameOperatorVersion
apple:mac_os_xapple mac os xlt10.15

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	lt	10.15

References

security.gentoo.org/glsa/202003-22

support.apple.com/HT210634

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

37.9%

JSON

Related for CVE-2019-8768

redhatcve1 debiancve1 prion1 veracode1 ubuntucve1 alpinelinux1 threatpost1 nessus18 freebsd1 openvas7 mageia1 apple4 gentoo1 suse2 redhat3 osv2 rocky1 amazon1 oraclelinux1 centos1