iOS 12 / macOS 10.14 voucher_swap Use-After-Free

Proof of concept for an older vulnerability from 2019. A use-after-free vulnerability in Apple's Mach voucher subsystem affects macOS version 10.14 and iOS version 12...

In-the-wild iOS Exploit Chain 5

Posted by Ian Beer, Project Zero TL;DR This exploit chain is a three way collision between this attacker group, Brandon Azad from Project Zero, and @S0rryMybad from 360 security. On November 17th 2018, @S0rryMybad used this vulnerability to win $200,000 USD at the TianFu Cup PWN competition...

CVE-2019-6225

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges...

CVE-2019-6225

CVE-2019-6225 is a kernel memory corruption vulnerability in Apple's XNU related to the task_swap_mach_voucher MIG path. The issue allows an attacker-controlled manipulation of ipc_voucher/voucher ports, enabling use-after-free-like effects on vouchers and, via heap grooming and IOSurface/ORB spr...

CVE-2019-6225

creationtimestamp| type| source ---|---|--- 2019-01-24 16:28:00+00:00| seen| MISP/5c49e6e0-a794-4c2f-afe2-4c8e0a021402 2019-01-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46248 2019-01-28 15:10:00+00:00| seen| MISP/5c4f1a2e-1300-4391-87cf-19c50a021402 2020-10-09...