CVE-2019-8598
Description
An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A malicious application may be able to read restricted memory.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
3.391
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update iCloud (7.12.0.14) fixes multiple vulnerabilities. | Windows |
| Update Apple iTunes (X64) (12.9.5.7) fixes multiple vulnerabilities. | Windows |
| iCloud 10.4 fixes multiple vulnerabilities in Windows 10 version 18362.145 or higher | Windows |
| Multiple Vulnerabilities are affected in Apple iTunes (X64) 12.9.4 | Windows |
| Multiple Vulnerabilities are affected in Apple iTunes 12.9.4 | Windows |
| Multiple vulnerabilities are fixed in macOS Mojave 10.14.5 Combo Update | Mac |
| Multiple vulnerabilities are fixed in macOS Mojave 10.14.5 | Mac |
| Multiple Vulnerabilities are affected in Apple iTunes For Mac 12.9.4 | Mac |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-309928 | iCloud (7.12.0.14) |
| PATCH-309938 | Apple iTunes (X64) (12.9.5.7) |
| PATCH-316162 | iCloud (7.21.0.23) (Deployment-Only) |
| PATCH-602005 | macOS Mojave 10.14.6 Combo Update |
| PATCH-602004 | macOS Mojave 10.14.6 |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234