Vulnerability Description
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13.3, iCloud for Windows 10.9, iOS 13.3 and iPadOS 13.3, Safari 13.0.4, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. Processing maliciously crafted web content may lead to arbitrary code execution.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Icloud | < 7.16 |
| Apple | Itunes | < 12.10.3 |
| Apple | Safari | < 13.0.4 |
| Apple | Ipados | < 13.3 |
| Apple | Iphone Os | < 13.3 |
| Apple | Tvos | < 13.3 |
| Redhat | Enterprise Linux Desktop | 7.0 |
| Redhat | Enterprise Linux Server | 7.0 |
| Redhat | Enterprise Linux Workstation | 7.0 |
Related Weaknesses (CWE)
References
- https://support.apple.com/en-us/HT210785Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210790Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210792Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210793Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210794Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210795Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210785Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210790Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210792Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210793Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210794Release NotesVendor Advisory
- https://support.apple.com/en-us/HT210795Release NotesVendor Advisory
FAQ
What is CVE-2019-8835?
CVE-2019-8835 is a vulnerability with a CVSS score of 8.8 (HIGH). Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13.3, iCloud for Windows 10.9, iOS 13.3 and iPadOS 13.3, Safari 13.0.4, iTunes 12.10.3 for W...
How severe is CVE-2019-8835?
CVE-2019-8835 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-8835?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Icloud, Apple Itunes, Apple Safari, Apple Ipados, Apple Iphone Os.