Home > Vulnerability Database > CVE-2019-8607

Mend.io Vulnerability Database

CVE-2019-8607

Good to know:

Date: December 18, 2019

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.

Severity Score

6.5

Related Resources (13)

Url: https://support.apple.com/HT210124

Url: https://support.apple.com/HT210212

Url: https://support.apple.com/HT210125

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-8607

Url: https://support.apple.com/HT210122

Url: https://support.apple.com/HT210123

Url: https://support.apple.com/HT210120

Url: https://security-tracker.debian.org/tracker/CVE-2019-8607

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-8607

Url: https://support.apple.com/HT210119

Url: https://access.redhat.com/security/cve/CVE-2019-8607

Url: https://support.apple.com/HT210118

Url: https://www.mend.io/vulnerability-database/CVE-2019-8607

Severity Score

6.5

Weakness Type (CWE)

Out-of-bounds Read

CWE-125

Top Fix

Upgrade Version

Upgrade to version webkit2gtk - 2.24.2-1

Learn More

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	4.3
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-8607

Good to know:

Date: December 18, 2019

Severity Score

Related Resources (13)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?