cbcvebase.
CVE-2019-8796
published 2020-10-27

CVE-2019-8796: A logic issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006…

PriorityP425medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
0.34%
56.8th percentile
A logic issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, iOS 12.4.3, watchOS 6.1, iOS 13.2 and iPadOS 13.2. AirDrop transfers may be unexpectedly accepted while in Everyone mode.

Affected

13 ranges
VendorProductVersion rangeFixed in
appleios
appleios_13.2_and_ipados
appleios_and_ipados>= unspecified < 13.213.2
appleipados< 13.213.2
appleiphone_os< 12.4.312.4.3
appleiphone_os>= 13.0 < 13.213.2
applemac_os_x< 10.15.110.15.1
applemacos>= unspecified < 10.1510.15
applemacos>= unspecified < 6.16.1
applemacos>= unspecified < 12.412.4
applemacos_catalina_10.15.1_security_update_2019-001_and_security_update_2019-006
applewatchos< 6.16.1
applewatchos

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N