CVE-2019-8585

Summary

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. Processing a maliciously crafted movie file may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 12.3affected
ApplemacOSunspecified < macOS Mojave 10.14.5affected
AppletvOSunspecified < tvOS 12.3affected
ApplewatchOSunspecified < watchOS 5.2.1affected

Weaknesses

  • Processing a maliciously crafted movie file may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References