CVE-2019-8600

Summary

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A maliciously crafted SQL query may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 12.3affected
ApplemacOSunspecified < macOS Mojave 10.14.5affected
AppletvOSunspecified < tvOS 12.3affected
ApplewatchOSunspecified < watchOS 5.2.1affected
AppleiTunes for Windowsunspecified < iTunes for Windows 12.9.5affected
AppleiCloud for Windowsunspecified < iCloud for Windows 7.12affected

Weaknesses

  • A maliciously crafted SQL query may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References