CVE-2019-8565
published 2019-12-18CVE-2019-8565: A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain…
high7CVSS 3.1
AVLACHPRNUIRSUCHIHAH
EXPLOIT
A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain root privileges.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | ios | >= unspecified < iOS 12.2 | iOS 12.2 |
| apple | iphone_os | < 12.2 | 12.2 |
| apple | mac_os_x | < 10.14.4 | 10.14.4 |
| apple | macos | >= unspecified < macOS Mojave 10.14.4 | macOS Mojave 10.14.4 |
| apple | macos_mojave_10.14.4_security_update_2019-002_high_sierra_security_update_2019-0 | — | — |
| k8s.io | client-go | >= 0 < 0.20.0-alpha.2 | 0.20.0-alpha.2 |
| msrc | azl3_local-path-provisioner_0.0.24-5_on_azure_linux_3.0 | — | — |
| msrc | cm1_kubernetes_1.17.13-5_on_cbl_mariner_1.0 | — | — |
CVSS provenance
nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
osv6.5MEDIUM
Microsoft
Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
vendor_msrc·2020-12-08·CVSS 5.5
CVE-2020-8565 [MEDIUM] CWE-532 Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
kubernetes: kubernetes
Customer Action Required: Yes
Remediation: CBL-Marin
Red Hat
kubernetes: Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
vendor_redhat·2020-10-14·CVSS 6.5
CVE-2020-8565 [MEDIUM] CWE-117 kubernetes: Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
kubernetes: Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
In Kubernetes, if the logging level is set to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like kubectl. This affects <= v1.19.3, <= v1.18.10, <= v1.17.13, < v1.20.0-alpha2.
A flaw was found in kubernetes. In Kubernetes, if the logging level is to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like `kubectl`. Previously, CVE-2019-11250 was assigned for the same issue for logging levels of at least 4.
Statement: OpenShift Container Platform 4 does not support LogLevels higher than 8 (via 'TraceAll'), and is therefore
Apple
CVE-2019-8565: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
vendor_apple·2019-03-25·CVSS 7.0
CVE-2019-8565 [HIGH] CVE-2019-8565: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
Apple Security Update: About the security content of macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
Product: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
CVE: CVE-2019-8565
Component: Feedback Assistant
Impact: A malicious application may be able to gain root privileges
Description: A race condition was addressed with additional validation.
Apple
CVE-2019-8565: iOS 12.2
vendor_apple·2019-03-25·CVSS 7.0
CVE-2019-8565 [HIGH] CVE-2019-8565: iOS 12.2
Apple Security Update: About the security content of iOS 12.2
Product: iOS
Version: 12.2
CVE: CVE-2019-8565
Component: Feedback Assistant
Impact: A malicious application may be able to gain root privileges
Description: A race condition was addressed with additional validation.
GHSA
GHSA-36gf-xph5-cmf6: A race condition was addressed with additional validation
ghsa_unreviewed·2022-05-24
CVE-2019-8565 [HIGH] GHSA-36gf-xph5-cmf6: A race condition was addressed with additional validation
A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain root privileges.
OSV
Unauthorized credential disclosure via debug logs in k8s.io/kubernetes and k8s.io/client-go
osv·2021-04-14·CVSS 6.5
CVE-2020-8565 Unauthorized credential disclosure via debug logs in k8s.io/kubernetes and k8s.io/client-go
Unauthorized credential disclosure via debug logs in k8s.io/kubernetes and k8s.io/client-go
Authorization tokens may be inappropriately logged if the verbosity level is set to a debug level. This is due to an incomplete fix for CVE-2019-11250.
No detection rules found.
Exploit-DB
Apple Mac OS X - Feedback Assistant Race Condition (Metasploit)
exploitdb·2019-05-23
CVE-2019-8565 Apple Mac OS X - Feedback Assistant Race Condition (Metasploit)
Apple Mac OS X - Feedback Assistant Race Condition (Metasploit)
---
##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
class MetasploitModule 'Mac OS X Feedback Assistant Race Condition',
'Description' => %q{
This module exploits a race condition vulnerability in Mac's Feedback Assistant.
A successful attempt would result in remote code execution under the context of
root.
},
'License' => MSF_LICENSE,
'Author' => [
'CodeColorist', # Discovery and exploit
'timwr', # Metasploit module
],
'References' => [
['CVE', '2019-8565'],
['URL', 'https://medium.com/0xcc/rootpipe-reborn-part-ii-e5a1ffff6afe'],
['URL', 'https://support.apple.com/en-in/HT209600'],
['URL', 'https://github.com/ChiChou/sploits'],
],
'Se
Metasploit
Mac OS X Feedback Assistant Race Condition
metasploit
Mac OS X Feedback Assistant Race Condition
Mac OS X Feedback Assistant Race Condition
This module exploits a race condition vulnerability in Mac's Feedback Assistant. A successful attempt would result in remote code execution under the context of root.
Sentinelone
Privilege Escalation | macOS Malware & The Path to Root Part 1 - SentinelLabs
blogs_sentinelone·2019-11-06
Privilege Escalation | macOS Malware & The Path to Root Part 1 - SentinelLabs
In this two-part series, we take a look at privilege escalation on macOS. In Part 1, we look at some of the vulnerabilities that have been discovered by security researchers in recent versions of Apple’s Desktop OS, focusing on those that have been turned into reliable exploits. We draw conclusions for enterprise and end users alike based on this review. In Part 2, we switch from researchers to attackers and explore both how and why the methodology of macOS threat actors takes quite a different path from that of the research community.
## What is Privilege Escalation?
Let’s start by defining our terms. Whenever code executes, it does so within the context of a user who invokes it. Technically, users need not always actually be people, but for our purposes here we’ll stick to the simple c
Sentinelone
Privilege Escalation | macOS Malware & The Path to Root Part 1
blogs_sentinelone·2019-11-06
Privilege Escalation | macOS Malware & The Path to Root Part 1
## Privilege Escalation | macOS Malware & The Path to Root Part 1
In this two-part series, we take a look at privilege escalation on macOS. In Part 1, we look at some of the vulnerabilities that have been discovered by security researchers in recent versions of Apple’s Desktop OS, focusing on those that have been turned into reliable exploits. We draw conclusions for enterprise and end users alike based on this review. In Part 2 , we switch from researchers to attackers and explore both how and why the methodology of macOS threat actors takes quite a different path from that of the research community.
## What is Privilege Escalation?
Let’s start by defining our terms. Whenever code executes, it does so within the context of a user who invokes it. Technically, users need not always actua
Bugzilla
CVE-2020-8565 kubernetes: Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
bugzilla·2020-10-09·CVSS 6.5
CVE-2020-8565 [MEDIUM] CVE-2020-8565 kubernetes: Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
CVE-2020-8565 kubernetes: Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9
In Kubernetes, if the logging level is to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like `kubectl`.
Previously, CVE-2019-11250 was assigned for the same issue for logging levels of at least 4.
Discussion:
Upstream Fix:
https://github.com/kubernetes/kubernetes/pull/95316
---
Acknowledgments:
Name: the Kubernetes Product Security Committee
Upstream: Patrick Rhomberg (purelyapplied)
---
External References:
https://groups.google.com/g/kubernetes-announce/c/ScdmyORnPDk
https://github.com/kubernetes/kubernetes/issues/95623
---
This issue has been addressed in the following products:
2019-12-18
Published