CVE-2019-6235

Summary

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions.

Impact & exploitability

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected products we track (1)

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Additional information

• NVD record
• https://support.apple.com/HT209443Advisory
• https://support.apple.com/HT209446Advisory
• https://support.apple.com/HT209447Advisory
• https://support.apple.com/HT209448Advisory
• https://support.apple.com/HT209450Advisory
• http://www.securityfocus.com/bid/106724Advisory