⚠ Actively exploited

Added to CISA KEV on 2022-06-27. Federal agencies required to patch by 2022-07-18. Required action: Apply updates per vendor instructions..

CVE-2019-8605 — Use After Free in Apple Macos

CWE-416 — Use After Free18 documents11 sources

Severity

7.8HIGHNVD

EPSS

12.1%

top 6.18%

CISA KEV

KEV

Added 2022-06-27

Due 2022-07-18

Exploit

Exploited in wild

Active exploitation observed

Affected products

Apple IOS Apple Macos Apple Tvos +3 more

Timeline

PublishedDec 18

KEV addedJun 27

KEV dueJul 18

CISA Required Action: Apply updates per vendor instructions.

Description

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to execute arbitrary code with system privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages8 packages

▶CVEListV5apple/tvosunspecified — tvOS 12.3

▶NVDapple/tvos< 12.3

▶CVEListV5apple/macosunspecified — macOS Mojave 10.14.5

▶CVEListV5apple/watchosunspecified — watchOS 5.2.1

▶NVDapple/watchos< 5.2.1

🔴Vulnerability Details

GHSA

GHSA-rv43-fj24-7hpc: A use after free issue was addressed with improved memory management↗2022-05-24

▶

Project0

Designing sockfuzzer, a network syscall fuzzer for XNU - Project Zero↗2021-04-01

▶

Project0

A survey of recent iOS kernel exploits - Project Zero↗2020-06-01

▶

Project0

Remote iPhone Exploitation Part 3: From Memory Corruption to JavaScript and Back -- Gaining Code Execution - Project Zero↗2020-01-01

▶

CVEList

CVE-2019-8605: A use after free issue was addressed with improved memory management↗2019-12-18

▶

💥Exploits & PoCs

Exploit-DB

iOS < 12.4.1 - 'Jailbreak' Local Privilege Escalation↗2019-09-23

▶

Exploit-DB

Apple macOS < 10.14.5 / iOS < 12.3 XNU - 'in6_pcbdetach' Stale Pointer Use-After-Free↗2019-05-21

▶

📋Vendor Advisories

CISA

Apple Multiple Products Use-After-Free Vulnerability↗2022-06-27

▶

Apple

CVE-2019-8605: tvOS 12.4.1↗2019-08-26

▶

Apple

CVE-2019-8605: macOS Mojave 10.14.6 Supplemental Update↗2019-08-26

▶

Apple

CVE-2019-8605: iOS 12.4.1↗2019-08-26

▶

Apple

CVE-2019-8605: watchOS 5.2.1↗2019-05-13

▶

🕵️Threat Intelligence

Trendmicro

Op Poisoned News Targets Hong Kong Users with Malware in Mobile News Links↗2020-03-24

▶

Tenable

Apple iPhone and iPad Devices Vulnerable After Reintroduction of SockPuppet Flaw in iOS 12.4 (CVE-2019-8605)↗2019-08-20

▶

📄Research Papers

arXiv

PTAuth: Temporal Memory Safety via Robust Points-to Authentication↗2020-10-26

▶