CVE-2019-8607

Summary

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 12.3affected
ApplemacOSunspecified < macOS Mojave 10.14.5affected
AppletvOSunspecified < tvOS 12.3affected
ApplewatchOSunspecified < watchOS 5.2.1affected
AppleSafariunspecified < Safari 12.1.1affected
AppleiTunes for Windowsunspecified < iTunes for Windows 12.9.5affected
AppleiCloud for Windowsunspecified < iCloud for Windows 7.12affected

Weaknesses

  • Processing maliciously crafted web content may result in the disclosure of process memory

ADP Enrichment

CVE Program Container

Additional References

References