CVE-2019-8542
CVE-2019-8542
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
18 Dec 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious application may be able to elevate privileges.
Affected products
Apple · iCloud for WindowsApple · iOSApple · iTunes for WindowsApple · macOSApple · tvOSApple · watchOSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →