CVE-2019-8706

Summary

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15, iOS 13.1 and iPadOS 13.1, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6. Processing a maliciously crafted audio file may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 13.1affected
AppletvOSunspecified < 13affected
ApplewatchOSunspecified < 6affected
ApplemacOSunspecified < 10.15affected
ApplemacOSunspecified < 10.15affected

Weaknesses

  • Processing a maliciously crafted audio file may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References