Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:13 a.m.15 views

CVE-2019-8605

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges...

9.3CVSS7.2AI score0.17438EPSS
Exploits6References1
The Hacker News
The Hacker News
added 2022/06/29 4:1 a.m.160 views

CISA Warns of Active Exploitation of 'PwnKit' Linux Vulnerability in the Wild

The U.S. Cybersecurity and Infrastructure Security Agency CISA this week moved to add a Linux vulnerability dubbed PwnKit to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation. The issue, tracked as CVE-2021-4034 CVSS score: 7.8, came to light in January 2022 and...

10CVSS1.2AI score0.94921EPSS
Exploits160
VulnCheck KEV
VulnCheck KEV
added 2022/06/23 12:0 a.m.9 views

VulnCheck KEV: CVE-2019-8605

A use-after-free vulnerability in Apple iOS, macOS, tvOS, and watchOS could allow a malicious application to execute code with system privileges...

9.3CVSS7.4AI score0.17438EPSS
Exploits6References1
GoogleProjectZero
GoogleProjectZero
added 2021/04/22 12:0 a.m.546 views

Designing sockfuzzer, a network syscall fuzzer for XNU

Posted by Ned Williamson, Project Zero Introduction When I started my 20% project – an initiative where employees are allocated twenty-percent of their paid work time to pursue personal projects – with Project Zero, I wanted to see if I could apply the techniques I had learned fuzzing Chrome to...

9.3CVSS8.3AI score0.2201EPSS
Exploits17
Apple
Apple
added 2020/07/27 8:19 a.m.66 views

About the security content of watchOS 5.2.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS0.8AI score0.19963EPSS
Exploits11Affected Software1
NVD
NVD
added 2019/12/18 6:15 p.m.20 views

CVE-2019-8605

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges...

9.3CVSS7.4AI score0.17438EPSS
Exploits6References5
Vulnrichment
Vulnrichment
added 2019/12/18 5:33 p.m.4 views

CVE-2019-8605

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges...

7.6AI score0.17438EPSS
Exploits6References4
CVE
CVE
added 2019/12/18 5:33 p.m.1102 views

CVE-2019-8605

CVE-2019-8605 is a use-after-free vulnerability in Apple’s XNU kernel (iOS, macOS, tvOS, watchOS) that could allow a malicious app to execute arbitrary code with system privileges. The initial description notes a use-after-free that was fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, and watc...

9.3CVSS7.5AI score0.17438EPSS
In wildExploits6References5Affected Software4
ATTACKERKB
ATTACKERKB
added 2019/12/18 12:0 a.m.34 views

CVE-2019-8605

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges. Recent assessments: Assessed Attacker Value: 0 Assessed...

9.3CVSS4AI score0.17438EPSS
In wildExploits6References6
GoogleProjectZero
GoogleProjectZero
added 2019/12/10 12:0 a.m.85 views

SockPuppet: A Walkthrough of a Kernel Exploit for iOS 12.4

Posted by Ned Williamson, 20% on Project Zero Introduction I have a somewhat unique opportunity in this writeup to highlight my experience as an iOS research newcomer. Many high quality iOS kernel exploitation writeups have been published, but those often feature weaker initial primitives combine...

9.3CVSS8.2AI score0.2201EPSS
Exploits17
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.55 views

Apple TV < 12.4.1 A Use-After-Free Vulnerability

According to its banner, the version of Apple TV on the remote device is prior to 12.4.1. It is therefore affected by a use-after-free vulnerability as described in the HT210550 C Tenable Network Security, Inc. include'compat.inc'; if description scriptid131702; scriptversion"1.6";...

9.3CVSS7.9AI score0.17438EPSS
Exploits6References2
Exploit DB
Exploit DB
added 2019/09/23 12:0 a.m.164 views

iOS &lt; 12.4.1 - &#039;Jailbreak&#039; Local Privilege Escalation

Exploit Title: SockPuppet 3 Date: September 8, 2019 Exploit Author: Umang Raghuvanshi Vendor Homepage: https://apple.com Software Link: https://ipsw.me/ Version: iOS 11.0—12.2, iOS 12.4 Tested on: iOS 11.0—12.2, iOS 12.4 CVE: CVE-2019-8605 This is an alternative and complete exploit for...

9.3CVSS8AI score0.17438EPSS
Exploits6
Apple
Apple
added 2019/09/17 6:6 a.m.67 views

About the security content of iOS 12.4.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS1.2AI score0.17438EPSS
Exploits6Affected Software1
Apple
Apple
added 2019/09/17 6:5 a.m.48 views

About the security content of macOS Mojave 10.14.6 Supplemental Update - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS1.3AI score0.17438EPSS
Exploits6Affected Software1
Apple
Apple
added 2019/09/17 6:3 a.m.44 views

About the security content of tvOS 12.4.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS0.4AI score0.17438EPSS
Exploits6Affected Software1
Apple
Apple
added 2019/08/26 12:0 a.m.45 views

About the security content of iOS 12.4.1

About the security content of iOS 12.4.1 This document describes the security content of iOS 12.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.3CVSS1.2AI score0.17438EPSS
Exploits6References1Affected Software1
Apple
Apple
added 2019/08/26 12:0 a.m.39 views

About the security content of tvOS 12.4.1

About the security content of tvOS 12.4.1 This document describes the security content of tvOS 12.4.1 About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.3CVSS0.2AI score0.17438EPSS
Exploits6References1Affected Software1
Apple
Apple
added 2019/08/26 12:0 a.m.27 views

About the security content of macOS Mojave 10.14.6 Supplemental Update

About the security content of macOS Mojave 10.14.6 Supplemental Update This document describes the security content of macOS Mojave 10.14.6 Supplemental Update. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an...

9.3CVSS0.9AI score0.17438EPSS
Exploits6References1Affected Software1
The Hacker News
The Hacker News
added 2019/08/20 2:54 p.m.1 views

iOS 12.4 jailbreak released after Apple 'accidentally un-patches' an old flaw

A fully functional jailbreak has been released for the latest iOS 12.4 on the Internet, making it the first public jailbreak in a long time—thanks to Apple. Dubbed "unc0ver 3.5.0 ," the jailbreak works with the updated iPhones, iPads and iPod Touches by leveraging a vulnerability that Apple...

9.3CVSS7.2AI score0.17438EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2019/05/24 12:0 a.m.38 views

Apple TV 12.0.0 and < 12.3 Multiple Vulnerabilities

Binary data 700719.prm...

9.8CVSS8.1AI score0.19963EPSS
Exploits12References36
Rows per page
Query Builder