CVE-2019-8675
Description
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.419
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in macOS Mojave 10.14.6 | Mac |
| Multiple vulnerabilities are fixed in macOS Mojave 10.14.6 Combo Update | Mac |
| Common UNIX Printing System(tm) (USN-4105-1) cups_2.2.7-1ubuntu2.7_i386.deb | Linux |
| Common UNIX Printing System(tm) (USN-4105-1) cups_2.2.7-1ubuntu2.7_amd64.deb | Linux |
| Common UNIX Printing System(tm) (USN-4105-1) cups_2.1.3-4ubuntu0.10_i386.deb | Linux |
| Common UNIX Printing System(tm) (USN-4105-1) cups_2.1.3-4ubuntu0.10_amd64.deb | Linux |
| Common UNIX Printing System(tm) (USN-4105-1) cups_2.2.10-4ubuntu2.1_i386.deb | Linux |
| Common UNIX Printing System(tm) (USN-4105-1) cups_2.2.10-4ubuntu2.1_amd64.deb | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-client-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-client-debuginfo-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-debuginfo-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-debugsource-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-libs-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-libs-32bit-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-libs-debuginfo-1.7.5-20.26.1.x86_64.rpm | Linux |
| SUSE-SU-2019:3057-1(SUSE Linux Enterprise Desktop 12-SP4 ) cups-libs-debuginfo-32bit-1.7.5-20.26.1.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-client-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-debugsource-2.2.6-33.el8.i686.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-debugsource-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-devel-2.2.6-33.el8.i686.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-devel-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-filesystem-2.2.6-33.el8.noarch.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-ipptool-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-libs-2.2.6-33.el8.i686.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-libs-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:1765) cups security and bug fix update cups-lpd-2.2.6-33.el8.x86_64.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-1.6.3-51.el7.x86_64.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-client-1.6.3-51.el7.x86_64.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-devel-1.6.3-51.el7.i686.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-devel-1.6.3-51.el7.x86_64.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-filesystem-1.6.3-51.el7.noarch.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-ipptool-1.6.3-51.el7.x86_64.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-libs-1.6.3-51.el7.i686.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-libs-1.6.3-51.el7.x86_64.rpm | Linux |
| (RHSA-2020:3864) cups security and bug fix update cups-lpd-1.6.3-51.el7.x86_64.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-2.2.6-33.el8.x86_64.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-client-2.2.6-33.el8.x86_64.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-devel-2.2.6-33.el8.i686.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-devel-2.2.6-33.el8.x86_64.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-filesystem-2.2.6-33.el8.noarch.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-ipptool-2.2.6-33.el8.x86_64.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-libs-2.2.6-33.el8.i686.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-libs-2.2.6-33.el8.x86_64.rpm | Linux |
| (CESA-2020:1765) cups security and bug fix update cups-lpd-2.2.6-33.el8.x86_64.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-1.6.3-51.el7.x86_64.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-client-1.6.3-51.el7.x86_64.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-devel-1.6.3-51.el7.x86_64.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-filesystem-1.6.3-51.el7.noarch.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-ipptool-1.6.3-51.el7.x86_64.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-libs-1.6.3-51.el7.x86_64.rpm | Linux |
| (CESA-2020:3864) cups security and bug fix update cups-lpd-1.6.3-51.el7.x86_64.rpm | Linux |
| Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability (CVE-2019-8675) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-602004 | macOS Mojave 10.14.6 |
| PATCH-602005 | macOS Mojave 10.14.6 Combo Update |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234