CVE-2019-7286
published 2019-12-18CVE-2019-7286: A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
KEVITWEXPLOIT
CISA Known Exploited Vulnerabilitydue 2022-06-13
Exploited in the wild
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | ios | >= unspecified < iOS 12.1.4 | iOS 12.1.4 |
| apple | iphone_os | < 12.1.4 | 12.1.4 |
| apple | mac_os_x | < 10.14.3 | 10.14.3 |
| apple | macos | >= unspecified < macOS Mojave 10.14.3 Supplemental Update | macOS Mojave 10.14.3 Supplemental Update |
| apple | macos_mojave_10.14.3_supplemental_update | — | — |
| apple | tvos | — | — |
| apple | watchos | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vulncheck7.8HIGH
cisa7.8HIGH