Apple Icloud vulnerabilities
449 known vulnerabilities affecting apple/icloud.
Total CVEs
449
CISA KEV
2
actively exploited
Public exploits
65
Exploited in wild
3
Severity breakdown
CRITICAL19HIGH343MEDIUM85LOW2
Vulnerabilities
Page 10 of 23
CVE-2019-8535HIGHCVSS 8.8fixed in 7.112019-12-18
CVE-2019-8535 [HIGH] CWE-787 CVE-2019-8535: A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 1
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8666HIGHCVSS 8.8fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8666 [HIGH] CWE-787 CVE-2019-8666: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8707HIGHCVSS 8.8fixed in 7.14≥ 10.0, < 10.72019-12-18
CVE-2019-8707 [HIGH] CWE-787 CVE-2019-8707: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8679HIGHCVSS 8.8fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8679 [HIGH] CWE-787 CVE-2019-8679: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8503HIGHCVSS 8.8fixed in 7.112019-12-18
CVE-2019-8503 [HIGH] CWE-20 CVE-2019-8503: A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Sa
A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the context of another website.
nvd
CVE-2019-6201HIGHCVSS 8.8fixed in 7.112019-12-18
CVE-2019-6201 [HIGH] CWE-787 CVE-2019-6201: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8571HIGHCVSS 8.8fixed in 7.12≥ 10.0, ≤ 10.42019-12-18
CVE-2019-8571 [HIGH] CWE-787 CVE-2019-8571: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-6232HIGHCVSS 7.5fixed in 7.112019-12-18
CVE-2019-6232 [HIGH] CWE-362 CVE-2019-6232: A race condition existed during the installation of iTunes for Windows. This was addressed with impr
A race condition existed during the installation of iTunes for Windows. This was addressed with improved state handling. This issue is fixed in iCloud for Windows 7.11. Running the iTunes installer in an untrusted directory may result in arbitrary code execution.
nvd
CVE-2019-8680HIGHCVSS 8.8fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8680 [HIGH] CWE-787 CVE-2019-8680: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8676HIGHCVSS 8.8fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8676 [HIGH] CWE-787 CVE-2019-8676: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8684HIGHCVSS 8.8fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8684 [HIGH] CWE-787 CVE-2019-8684: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8678HIGHCVSS 8.8fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8678 [HIGH] CWE-787 CVE-2019-8678: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8622HIGHCVSS 8.8PoCfixed in 7.122019-12-18
CVE-2019-8622 [HIGH] CWE-787 CVE-2019-8622: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8733HIGHCVSS 8.8fixed in 7.14≥ 10.0, < 10.72019-12-18
CVE-2019-8733 [HIGH] CWE-787 CVE-2019-8733: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8523HIGHCVSS 8.8fixed in 7.112019-12-18
CVE-2019-8523 [HIGH] CWE-787 CVE-2019-8523: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8783HIGHCVSS 8.8fixed in 7.15≥ 10.0, < 10.82019-12-18
CVE-2019-8783 [HIGH] CWE-787 CVE-2019-8783: Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2019-8745HIGHCVSS 8.8fixed in 7.14≥ 10.0, < 10.72019-12-18
CVE-2019-8745 [HIGH] CWE-119 CVE-2019-8745: A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15, tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing a maliciously crafted text file may lead to arbitrary code execution.
nvd
CVE-2019-8658MEDIUMCVSS 6.1fixed in 7.13≥ 10.0, < 10.62019-12-18
CVE-2019-8658 [MEDIUM] CWE-79 CVE-2019-8658: A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS M
A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
nvd
CVE-2019-8719MEDIUMCVSS 6.1fixed in 7.14≥ 10.0, < 10.72019-12-18
CVE-2019-8719 [MEDIUM] CWE-79 CVE-2019-8719: A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes f
A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.
nvd
CVE-2019-8607MEDIUMCVSS 6.5fixed in 7.12≥ 10.0, < 10.42019-12-18
CVE-2019-8607 [MEDIUM] CWE-125 CVE-2019-8607: An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3,
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory.
nvd