CVE-2019-8789

Summary

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Parsing a maliciously crafted iBooks file may lead to disclosure of user information.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.2 and iPadOS 13.2affected
ApplemacOSunspecified < macOS Catalina 10.15.1affected

Weaknesses

  • Parsing a maliciously crafted iBooks file may lead to disclosure of user information

ADP Enrichment

CVE Program Container

Additional References

References