CVE-2019-8502
published 2019-12-18CVE-2019-8502: An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave…
low3.3CVSS 3.1
AVLACLPRNUIRSUCNILAN
An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user authorization.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | ios | >= unspecified < iOS 12.2 | iOS 12.2 |
| apple | iphone_os | < 12.2 | 12.2 |
| apple | mac_os_x | < 10.14.4 | 10.14.4 |
| apple | macos | >= unspecified < macOS Mojave 10.14.4 | macOS Mojave 10.14.4 |
| apple | macos_mojave_10.14.4_security_update_2019-002_high_sierra_security_update_2019-0 | — | — |
| apple | tvos | < 12.2 | 12.2 |
| apple | tvos | — | — |
| apple | tvos | >= unspecified < tvOS 12.2 | tvOS 12.2 |
| apple | watchos | < 5.2 | 5.2 |
| apple | watchos | — | — |
| apple | watchos | >= unspecified < watchOS 5.2 | watchOS 5.2 |
Apple
CVE-2019-8502: watchOS 5.2
vendor_apple·2019-03-27·CVSS 3.3
CVE-2019-8502 [LOW] CVE-2019-8502: watchOS 5.2
Apple Security Update: About the security content of watchOS 5.2
Product: watchOS
Version: 5.2
CVE: CVE-2019-8502
Component: Siri
Impact: A malicious application may be able to initiate a Dictation request without user authorization
Description: An API issue existed in the handling of dictation requests. This issue was addressed with improved validation.
Apple
CVE-2019-8502: tvOS 12.2
vendor_apple·2019-03-25·CVSS 3.3
CVE-2019-8502 [LOW] CVE-2019-8502: tvOS 12.2
Apple Security Update: About the security content of tvOS 12.2
Product: tvOS
Version: 12.2
CVE: CVE-2019-8502
Component: Siri
Impact: A malicious application may be able to initiate a Dictation request without user authorization
Description: An API issue existed in the handling of dictation requests. This issue was addressed with improved validation.
Apple
CVE-2019-8502: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
vendor_apple·2019-03-25·CVSS 3.3
CVE-2019-8502 [LOW] CVE-2019-8502: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
Apple Security Update: About the security content of macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
Product: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
CVE: CVE-2019-8502
Component: Siri
Impact: A malicious application may be able to initiate a Dictation request without user authorization
Description: An API issue existed in the handling of dictation requests. This issue was addressed with improved validation.
Apple
CVE-2019-8502: iOS 12.2
vendor_apple·2019-03-25·CVSS 3.3
CVE-2019-8502 [LOW] CVE-2019-8502: iOS 12.2
Apple Security Update: About the security content of iOS 12.2
Product: iOS
Version: 12.2
CVE: CVE-2019-8502
Component: Siri
Impact: A malicious application may be able to initiate a Dictation request without user authorization
Description: An API issue existed in the handling of dictation requests. This issue was addressed with improved validation.
GHSA
GHSA-hwp7-c247-x2gq: An API issue existed in the handling of dictation requests
ghsa_unreviewed·2022-05-24
CVE-2019-8502 [MEDIUM] GHSA-hwp7-c247-x2gq: An API issue existed in the handling of dictation requests
An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user authorization.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-12-18
Published