Apple Ios 13.3 And Ipados vulnerabilities

CVE-2019-8835 [HIGH] CVE-2019-8835: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8835 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2019-8848 [HIGH] CVE-2019-8848: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8848 Component: CFNetwork Proxies Impact: An application may be able to gain elevated privileges Description: This issue was addressed with improved checks.

CVE-2019-8830 [HIGH] CVE-2019-8830: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8830 Component: FaceTime Impact: Processing malicious video via FaceTime may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation.

CVE-2019-8833 [HIGH] CVE-2019-8833: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8833 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed by removing the vulnerable code.

CVE-2019-8844 [HIGH] CVE-2019-8844: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8844 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2019-8841 [HIGH] CVE-2019-8841: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8841 Component: IOSurfaceAccelerator Impact: An application may be able to execute arbitrary code with kernel privileges Description: An information disclosure issue was addressed by removing the vulnerable code.

CVE-2019-15903 [HIGH] CVE-2019-15903: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-15903 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-8846 [HIGH] CVE-2019-8846: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8846 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2019-8828 [HIGH] CVE-2019-8828: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8828 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-8832 [HIGH] CVE-2019-8832: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8832 Component: Security Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-15163 [HIGH] CVE-2019-15163: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-15163 Component: CVE-2019-15163

CVE-2019-8838 [HIGH] CVE-2019-8838: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8838 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-15162 [MEDIUM] CVE-2019-15162: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-15162 Component: CVE-2019-15162

CVE-2019-8834 [MEDIUM] CVE-2019-8834: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8834 Component: CFNetwork Impact: An attacker in a privileged network position may be able to bypass HSTS for a limited number of specific top-level domains previously not in the HSTS preload list Description: A configuration issue was addressed with additional restrictions.

CVE-2019-15164 [MEDIUM] CVE-2019-15164: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-15164 Component: CVE-2019-15164

CVE-2019-15165 [MEDIUM] CVE-2019-15165: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-15165 Component: CVE-2019-15165

CVE-2019-15161 [MEDIUM] CVE-2019-15161: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-15161 Component: CVE-2019-15161

CVE-2019-8898 [MEDIUM] CVE-2019-8898: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8898 Component: WebKit Impact: Visiting a maliciously crafted website may reveal sites a user has visited Description: An information disclosure issue existed in the handling of the Storage Access API. This issue was addressed with improved logic.

CVE-2019-8857 [LOW] CVE-2019-8857: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8857 Component: Photos Impact: Live Photo audio and video data may be shared via iCloud links even if Live Photo is disabled in the Share Sheet carousel Description: The issue was addressed with improved validation when an iCloud Link is created.

CVE-2019-8856 [LOW] CVE-2019-8856: iOS 13.3 and iPadOS 13.3 Apple Security Update: About the security content of iOS 13.3 and iPadOS 13.3 Product: iOS 13.3 and iPadOS Version: 13.3 CVE: CVE-2019-8856 Component: CallKit Impact: Calls made using Siri may be initiated using the wrong cellular plan on devices with two active plans Description: An API issue existed in the handling of outgoing phone calls initiated with Siri. This issue was addressed with improved state handling.