← back
CVE-2019-8592

CVE-2019-8592

EPSS 1.2%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Oct 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, tvOS 12.3, watchOS 5.2.1, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, iOS 13. Playing a malicious audio file may lead to arbitrary code execution.
Affected products
Apple · iOSApple · macOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.apple.com/en-us/HT210118https://support.apple.com/en-us/HT210119https://support.apple.com/en-us/HT210120https://support.apple.com/en-us/HT210122https://support.apple.com/en-us/HT210604https://support.apple.com/en-us/HT210606https://support.apple.com/en-us/HT210634https://support.apple.com/en-us/HT210722