CVE-2019-8554
CVE-2019-8554
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
18 Dec 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A permissions issue existed in the handling of motion and orientation data. This issue was addressed with improved restrictions. This issue is fixed in iOS 12.2. A website may be able to access sensor information without user consent.
Affected products
Apple · iOSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://support.apple.com/HT209599