CVE-2019-8854

Summary

A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in macOS Catalina 10.15, watchOS 6, iOS 13, tvOS 13. A device may be passively tracked by its Wi-Fi MAC address.

Affected Software

VendorProductVersion RangeStatus
AppletvOSunspecified < 13affected
AppleiOSunspecified < 13affected
ApplewatchOSunspecified < 6affected
ApplemacOSunspecified < 10.15affected

Weaknesses

  • A device may be passively tracked by its Wi-Fi MAC address

ADP Enrichment

CVE Program Container

Additional References

References