CVE-2019-8789
published 2019-12-18CVE-2019-8789: A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Parsing a maliciously crafted iBooks file may lead to disclosure of user information.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | >= unspecified < iOS 13.2 and iPadOS 13.2 | iOS 13.2 and iPadOS 13.2 |
| apple | ios_13.2_and_ipados | — | — |
| apple | ipados | < 13.2 | 13.2 |
| apple | iphone_os | < 13.2 | 13.2 |
| apple | mac_os_x | < 10.15.1 | 10.15.1 |
| apple | macos | >= unspecified < macOS Catalina 10.15.1 | macOS Catalina 10.15.1 |
| apple | macos_catalina_10.15.1_security_update_2019-001_and_security_update_2019-006 | — | — |
Apple
CVE-2019-8789: macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006
vendor_apple·2019-10-29·CVSS 5.5
CVE-2019-8789 [MEDIUM] CVE-2019-8789: macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006
Apple Security Update: About the security content of macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006
Product: macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006
CVE: CVE-2019-8789
Component: Books
Impact: Parsing a maliciously crafted iBooks file may lead to disclosure of user information
Description: A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks.
Apple
CVE-2019-8789: iOS 13.2 and iPadOS 13.2
vendor_apple·2019-10-28·CVSS 5.5
CVE-2019-8789 [MEDIUM] CVE-2019-8789: iOS 13.2 and iPadOS 13.2
Apple Security Update: About the security content of iOS 13.2 and iPadOS 13.2
Product: iOS 13.2 and iPadOS
Version: 13.2
CVE: CVE-2019-8789
Component: Books
Impact: Parsing a maliciously crafted iBooks file may lead to disclosure of user information
Description: A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks.
GHSA
GHSA-2p5m-pxg9-g2wq: A validation issue existed in the handling of symlinks
ghsa_unreviewed·2022-05-24
CVE-2019-8789 [MEDIUM] GHSA-2p5m-pxg9-g2wq: A validation issue existed in the handling of symlinks
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Parsing a maliciously crafted iBooks file may lead to disclosure of user information.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-12-18
Published