← Back to CVEs

CVE-2019-6209

N/A

Description

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to determine kernel memory layout.

CVE Details

CVSS v3.1 ScoreN/A

Published3/5/2019

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

apple:iphone_osapple:mac_os_xapple:tv_osapple:watchos

Weaknesses (CWE)

CWE-125

References

http://www.securityfocus.com/bid/106739(product-security@apple.com)

https://support.apple.com/HT209443(product-security@apple.com)

https://support.apple.com/HT209446(product-security@apple.com)

https://support.apple.com/HT209447(product-security@apple.com)

https://support.apple.com/HT209448(product-security@apple.com)

https://www.exploit-db.com/exploits/46285/(product-security@apple.com)

http://www.securityfocus.com/bid/106739(af854a3a-2127-422b-91ae-364da2661108)

https://support.apple.com/HT209443(af854a3a-2127-422b-91ae-364da2661108)

https://support.apple.com/HT209446(af854a3a-2127-422b-91ae-364da2661108)

https://support.apple.com/HT209447(af854a3a-2127-422b-91ae-364da2661108)

https://support.apple.com/HT209448(af854a3a-2127-422b-91ae-364da2661108)

https://www.exploit-db.com/exploits/46285/(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.