CVE-2019-8803

Summary

An authentication issue was addressed with improved state management. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. A local attacker may be able to login to the account of a previously logged in user without valid credentials..

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.2 and iPadOS 13.2affected
ApplemacOSunspecified < macOS Catalina 10.15.1affected
AppletvOSunspecified < tvOS 13.2affected
ApplewatchOSunspecified < watchOS 6.1affected

Weaknesses

  • A local attacker may be able to login to the account of a previously logged in user without valid credentials.

ADP Enrichment

CVE Program Container

Additional References

References