CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may...

9.3CVSS7.3AI score0.01466EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:54 a.m.•3 views

CVE-2019-8665

A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.4, watchOS 5.3. A remote attacker may cause an unexpected application termination...

7.5CVSS6.1AI score0.00471EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:54 a.m.•9 views

CVE-2019-8646

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to leak memory...

7.5CVSS5.8AI score0.05228EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:54 a.m.•6 views

CVE-2019-8657

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. Parsing a maliciously crafted office document may lead to an unexpected application termination or arbitrary code execution...

8.8CVSS6.5AI score0.00645EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:26 a.m.•2 views

CVE-2019-8682

The issue was addressed with improved UI handling. This issue is fixed in iOS 12.4, watchOS 5.3. A user may inadvertently complete an in-app purchase while on the lock screen...

2.4CVSS5.7AI score0.00045EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:26 a.m.•2 views

CVE-2019-8699

A logic issue existed in the handling of answering phone calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4. The initiator of a phone call may be able to cause the recipient to answer a simultaneous Walkie-Talkie connection...

7.5CVSS5.5AI score0.00322EPSS

Exploits0References1

NVD•added 2022/03/23 10:15 p.m.•18 views

CVE-2020-20095

iMessage Messages app iOS 12.4 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages...

6.5CVSS0.00335EPSS

Exploits2References2

Prion•added 2022/03/23 10:15 p.m.•21 views

Code injection

iMessage Messages app iOS 12.4 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages...

4.3CVSS6.1AI score0.00335EPSS

Exploits2References2Affected Software1

CVE•added 2022/03/23 9:28 p.m.•62 views

CVE-2020-20095

CVE-2020-20095 affects iMessage (Messages app) on iOS 12.4 and earlier, where the user interface fails to correctly render URI messages, enabling URI spoofing via specially crafted messages. The vulnerability relates to how the app presents links, potentially misleading users about the actual des...

6.5CVSS6.1AI score0.00335EPSS

Exploits2References2Affected Software1

Cvelist•added 2022/03/23 9:28 p.m.•21 views

CVE-2020-20095

iMessage Messages app iOS 12.4 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages...

6.2AI score0.00335EPSS

Exploits2References2

Prion•added 2021/12/23 8:15 p.m.•18 views

Design/Logic Flaw

This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user may be able to read a persistent account identifier...

2.1CVSS4.2AI score0.00061EPSS

Exploits0References3Affected Software3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by