Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable700719.PRM
HistoryMay 24, 2019 - 12:00 a.m.

Apple TV 12.0.0 and < 12.3 Multiple Vulnerabilities

2019-05-2400:00:00
Tenable
www.tenable.com
14
JSON

The version of Apple tvOS installed on the remote host is greater or equal to 12.0.0 and prior to 12.3. It is, therefore, affected by the following vulnerabilities :

  • An application may be able to execute arbitrary code with system privileges. (CVE-2019-8593)

  • Processing a maliciously crafted movie file may lead to arbitrary code execution. (CVE-2019-8585)

  • A malicious application may be able to read restricted memory. (CVE-2019-8560)

  • A malicious application may be able to execute arbitrary code with system privileges. (CVE-2019-8605)

  • A local user may be able to cause unexpected system termination or read kernel memory. (CVE-2019-8576)

  • An application may be able to cause unexpected system termination or write kernel memory. (CVE-2019-8591)

  • A local user may be able to modify protected parts of the file system. (CVE-2019-8568)

  • A malicious application may be able to gain root privileges. (CVE-2019-8637)

  • An application may be able to gain elevated privileges. (CVE-2019-8577)

  • A maliciously crafted SQL query may lead to arbitrary code execution. (CVE-2019-8600)

  • A malicious application may be able to read restricted memory. (CVE-2019-8598)

  • A malicious application may be able to elevate privileges. (CVE-2019-8602)

  • An application may be able to execute arbitrary code with system privileges. (CVE-2019-8574)

  • Processing maliciously crafted web content may result in the disclosure of process memory. (CVE-2019-8607)

  • Processing maliciously crafted web content may lead to arbitrary code execution. (CVE-2019-6237, CVE-2019-8571, CVE-2019-8583, CVE-2019-8584, CVE-2019-8586, CVE-2019-8587, CVE-2019-8594, CVE-2019-8595, CVE-2019-8596, CVE-2019-8597, CVE-2019-8601, CVE-2019-8608, CVE-2019-8609, CVE-2019-8610, CVE-2019-8611, CVE-2019-8615, CVE-2019-8619, CVE-2019-8622, CVE-2019-8623, CVE-2019-8628)

  • A device may be passively tracked by its WiFi MAC address. (CVE-2019-8620)

Binary data 700719.prm
VendorProductVersionCPE
appleapple_tvcpe:/a:apple:apple_tv

References

Related

nessus 20
apple 21
openvas 9
kaspersky 2
suse 1
threatpost 3
fedora 2
archlinux 1
freebsd 1
ubuntu 1
githubexploit 2
rocky 1
osv 2
redhat 1
zdi 7
prion 29
cve 28
veracode 14
zdt 3
debiancve 14
ubuntucve 16
redhatcve 14
checkpoint_advisories 2
thn 3
attackerkb 1
exploitpack 1
nessus
nessus
Apple TV < 12.3 Multiple Vulnerabilities
2019-05-15 00:00:00
Apple iTunes for Windows < 12.9.5 Multiple Vulnerabilities (uncredentialed check)
2019-07-04 00:00:00
Apple iCloud < 7.12 Multiple Vulnerabilities
2019-06-14 00:00:00
apple
apple
About the security content of iCloud for Windows 10.4
2019-06-11 00:00:00
About the security content of iCloud for Windows 10.4 - Apple Support
2019-06-12 09:10:16
About the security content of Safari 12.1.1
2019-05-13 00:00:00
openvas
openvas
Apple iCloud Security Updates (HT210212)
2019-06-14 00:00:00
Apple Safari Security Updates (HT210123)
2019-05-14 00:00:00
openSUSE: Security Advisory for webkit2gtk3 (openSUSE-SU-2019:1766-1)
2019-07-22 00:00:00
kaspersky
kaspersky
KLA11489 Multiple vulnerabilities in iTunes
2019-05-28 00:00:00
KLA11490 Multiple vulnerabilities in iCloud
2019-05-28 00:00:00
suse
suse
Security update for webkit2gtk3 (important)
2019-07-21 00:00:00
threatpost
threatpost
DEF CON 2019: New Class of SQLite Exploits Open Door to iPhone Hack
2019-08-10 21:00:04
Apple Patches Intel Side-Channel Bugs; Updates iOS, macOS and More
2019-05-14 20:31:36
Emerging APT Mounts Mass iPhone Surveillance Campaign
2020-03-26 17:49:40
fedora
fedora
[SECURITY] Fedora 30 Update: webkit2gtk3-2.24.2-1.fc30
2019-05-20 01:06:00
[SECURITY] Fedora 29 Update: webkit2gtk3-2.24.2-1.fc29
2019-05-30 17:27:39
archlinux
archlinux
[ASA-201905-10] webkit2gtk: multiple issues
2019-05-28 00:00:00
freebsd
freebsd
webkit2-gtk3 -- Multiple vulnerabilities
2019-04-10 00:00:00
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2019-05-22 00:00:00
githubexploit
githubexploit
Exploit for Type Confusion in Apple Iphone Os
2020-01-20 00:33:37
Exploit for Out-of-bounds Write in Apple Icloud
2020-01-02 00:12:22
rocky
rocky
GNOME security, bug fix, and enhancement update
2019-11-05 17:59:21
osv
osv
Low: GNOME security, bug fix, and enhancement update
2019-11-05 17:59:21
Low: GNOME security, bug fix, and enhancement update
2019-11-05 17:59:21
redhat
redhat
(RHSA-2019:3553) Low: GNOME security, bug fix, and enhancement update
2019-11-05 17:59:21
zdi
zdi
QuickTime get_by_tree Memory Corruption Information Disclosure Vulnerability
2019-09-17 00:00:00
Apple macOS ACGetNewAU Memory Corruption Information Disclosure Vulnerability
2019-06-07 00:00:00
Apple Safari RootInlineBox Use-After-Free Remote Code Execution Vulnerability
2019-05-30 00:00:00
prion
prion
Type confusion
2019-12-18 18:15:00
Memory corruption
2019-12-18 18:15:00
Input validation
2019-12-18 18:15:00
cve
cve
CVE-2019-8585
2019-12-18 18:15:00
CVE-2019-8571
2019-12-18 18:15:00
CVE-2019-8593
2019-12-18 18:15:00
veracode
veracode
Arbitrary Code Execution
2020-10-01 03:52:25
Arbitrary Code Execution
2020-10-01 03:52:27
Arbitrary Code Execution
2020-10-01 03:52:23
zdt
zdt
macOS < 10.14.5 / iOS < 12.3 XNU - Wild-read due to bad cast in stf_ioctl Exploit
2019-05-21 00:00:00
macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - AIR Optimization Incorrectly Removes Assignment
2019-05-21 00:00:00
macOS < 10.14.5 / iOS < 12.3 XNU - in6_pcbdetach Stale Pointer Use-After-Free Exploit
2019-05-21 00:00:00
debiancve
debiancve
CVE-2019-8586
2019-12-18 18:15:00
CVE-2019-6237
2019-12-18 18:15:00
CVE-2019-8609
2019-12-18 18:15:00
ubuntucve
ubuntucve
CVE-2019-8586
2019-12-18 00:00:00
CVE-2019-8571
2019-12-18 00:00:00
CVE-2019-8587
2019-12-18 00:00:00
redhatcve
redhatcve
CVE-2019-8586
2020-09-08 13:20:17
CVE-2019-8584
2020-09-08 13:19:42
CVE-2019-8609
2020-09-08 13:19:59
checkpoint_advisories
checkpoint_advisories
Apple Multiple Products Memory Corruption (CVE-2019-8611)
2020-07-03 00:00:00
Apple iTunes Memory Corruption (CVE-2019-8601)
2020-02-05 00:00:00
thn
thn
Apple Releases iOS 12.4.1 Emergency Update to Patch 'Jailbreak' Flaw
2019-08-27 06:06:00
Hackers Used Local News Sites to Install Spyware On iPhones
2020-03-27 11:26:00
New Tool Can Jailbreak Any iPhone and iPad Using An Unpatched 0-Day Bug
2020-05-25 08:02:00
attackerkb
attackerkb
CVE-2019-8605
2019-12-18 00:00:00
exploitpack
exploitpack
Apple macOS 10.14.5 iOS 12.3 XNU - in6_pcbdetach Stale Pointer Use-After-Free
2019-05-21 00:00:00
JSON
Related for 700719.PRM
nessus20apple21openvas9kaspersky2suse1threatpost3fedora2archlinux1freebsd1ubuntu1githubexploit2rocky1osv2redhat1zdi7prion29cve28veracode14zdt3debiancve14ubuntucve16redhatcve14checkpoint_advisories2thn3attackerkb1exploitpack1