Lucene search
K

358 matches found

Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.60 views

Apple iOS < 12.4.9 Multiple Vulnerabilities

Binary data appleios1249check.nbin...

9.3CVSS6.9AI score0.22178EPSS
Exploits2References5
The Hacker News
The Hacker News
added 2021/01/20 11:16 a.m.7 views

Google Details Patched Bugs in Signal, FB Messenger, JioChat Apps

In January 2019, a critical flaw was reported in Apple's FaceTime group chats feature that made it possible for users to initiate a FaceTime video call and eavesdrop on targets by adding their own number as a third person in a group chat even before the person on the other end accepted the incomi...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/20 11:16 a.m.41 views

Google Details Patched Bugs in Signal, FB Messenger, JioChat Apps

In January 2019, a critical flaw was reported in Apple's FaceTime group chats feature that made it possible for users to initiate a FaceTime video call and eavesdrop on targets by adding their own number as a third person in a group chat even before the person on the other end accepted the incomi...

0.1AI score
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2021/01/19 12:0 a.m.37 views

The State of State Machines

Posted by Natalie Silvanovich, Project Zero On January 29, 2019, a serious vulnerability was discovered in Group FaceTime which allowed an attacker to call a target and force the call to connect without user interaction from the target, allowing the attacker to listen to the target’s surroundings...

7.4AI score
Exploits0
OSV
OSV
added 2020/12/08 9:15 p.m.6 views

CVE-2020-27929

A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...

5.5CVSS6.3AI score0.00597EPSS
Exploits0References1
NVD
NVD
added 2020/12/08 9:15 p.m.19 views

CVE-2020-27929

A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...

5.5CVSS4.5AI score0.00597EPSS
Exploits0References1
Prion
Prion
added 2020/12/08 9:15 p.m.27 views

Code injection

A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...

4.3CVSS4.8AI score0.00597EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/08 8:13 p.m.73 views

CVE-2020-27929

CVE-2020-27929 concerns a logic issue in the handling of Group FaceTime calls. The affected component is FaceTime on Apple iOS devices, with the root cause described as a logic/state-management issue that could allow a user to send video in Group FaceTime calls without realizing it. The vulnerabi...

5.5CVSS5AI score0.00597EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/08 8:13 p.m.23 views

CVE-2020-27929

A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...

5.2AI score0.00597EPSS
Exploits0References1
Apple
Apple
added 2020/11/12 7:38 a.m.114 views

About the security content of macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS0.7AI score0.11091EPSS
Exploits12Affected Software4
Apple
Apple
added 2020/11/05 6:30 a.m.95 views

About the security content of iOS 12.4.9 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS0.4AI score0.22178EPSS
Exploits2Affected Software1
Apple
Apple
added 2020/11/05 12:0 a.m.43 views

About the security content of iOS 12.4.9

About the security content of iOS 12.4.9 This document describes the security content of iOS 12.4.9. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.3CVSS7.8AI score0.22178EPSS
Exploits2References1Affected Software1
CNVD
CNVD
added 2020/11/04 12:0 a.m.1 views

Unspecified Vulnerability in Apple iOS and macOS Mojave Live Photos in FaceTime Component

Apple iOS is an operating system developed by Apple Inc. for mobile devices.Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in the Live Photos in FaceTime component of Apple iOS versions prior to 12.1.4 and macOS Mojave...

9.8CVSS6.4AI score0.01366EPSS
Exploits0References1
NVD
NVD
added 2020/10/27 8:15 p.m.16 views

CVE-2019-8830

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iOS 12.4.4, watchOS 5.3.4. Processing malicious video v...

9.3CVSS8.2AI score0.02142EPSS
Exploits0References6
OSV
OSV
added 2020/10/27 8:15 p.m.4 views

CVE-2019-8830

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iOS 12.4.4, watchOS 5.3.4. Processing malicious video v...

8.8CVSS6.2AI score0.02142EPSS
Exploits0References6
NVD
NVD
added 2020/10/27 8:15 p.m.21 views

CVE-2019-7288

The issue was addressed with improved validation on the FaceTime server. This issue is fixed in macOS Mojave 10.14.3 Supplemental Update, iOS 12.1.4. A thorough security audit of the FaceTime service uncovered an issue with Live Photos...

9.8CVSS8AI score0.01366EPSS
Exploits0References2
OSV
OSV
added 2020/10/27 8:15 p.m.3 views

CVE-2019-7288

The issue was addressed with improved validation on the FaceTime server. This issue is fixed in macOS Mojave 10.14.3 Supplemental Update, iOS 12.1.4. A thorough security audit of the FaceTime service uncovered an issue with Live Photos...

9.8CVSS7.5AI score0.01366EPSS
Exploits0References2
Prion
Prion
added 2020/10/27 8:15 p.m.24 views

Code injection

The issue was addressed with improved validation on the FaceTime server. This issue is fixed in macOS Mojave 10.14.3 Supplemental Update, iOS 12.1.4. A thorough security audit of the FaceTime service uncovered an issue with Live Photos...

7.5CVSS7.6AI score0.01366EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2020/10/27 8:15 p.m.20 views

Input validation

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iOS 12.4.4, watchOS 5.3.4. Processing malicious video v...

9.3CVSS7.9AI score0.02142EPSS
Exploits0References6Affected Software5
CVE
CVE
added 2020/10/27 7:54 p.m.104 views

CVE-2019-8830

CVE-2019-8830 involves an out-of-bounds read in FaceTime processing of malicious video, fixed by input validation improvements. Affected Apple platforms include tvOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra, iOS 13.3/iPadOS...

9.3CVSS7.7AI score0.02142EPSS
Exploits0References6Affected Software5
Rows per page
Query Builder