Apple Macos Catalina vulnerabilities

CVE-2019-8703 [CRITICAL] CVE-2019-8703: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8703 Component: Kernel Impact: An application may be able to gain elevated privileges Description: This issue was addressed with improved entitlements.

CVE-2019-8746 [CRITICAL] CVE-2019-8746: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8746 Component: Foundation Impact: A remote attacker may be able to cause unexpected application termination or arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation.

CVE-2019-8750 [CRITICAL] CVE-2019-8750: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8750 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2019-8756 [CRITICAL] CVE-2019-8756: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8756 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2019-8749 [CRITICAL] CVE-2019-8749: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8749 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2019-8767 [CRITICAL] CVE-2019-8767: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8767 Component: CUPS Impact: Processing a maliciously crafted string may lead to heap corruption Description: A memory consumption issue was addressed with improved memory handling.

CVE-2019-8715 [HIGH] CVE-2019-8715: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8715 Component: PluginKit Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-8748 [HIGH] CVE-2019-8748: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8748 Component: AMD Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-8706 [HIGH] CVE-2019-8706: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8706 Component: Audio Impact: Processing a maliciously crafted audio file may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2019-8758 [HIGH] CVE-2019-8758: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8758 Component: Intel Graphics Driver Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-8755 [HIGH] CVE-2019-8755: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8755 Component: IOGraphics Impact: A malicious application may be able to determine kernel memory layout Description: A logic issue was addressed with improved restrictions.

CVE-2019-8709 [HIGH] CVE-2019-8709: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8709 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2019-8826 [HIGH] CVE-2019-8826: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8826 Component: Menus Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved state management.

CVE-2019-8776 [HIGH] CVE-2019-8776: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8776 Component: CUPS Impact: An attacker in a privileged position may be able to perform a denial of service attack Description: A denial of service issue was addressed with improved validation.

CVE-2019-8745 [HIGH] CVE-2019-8745: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8745 Component: UIFoundation Impact: Processing a maliciously crafted text file may lead to arbitrary code execution Description: A buffer overflow was addressed with improved bounds checking.

CVE-2019-8509 [HIGH] CVE-2019-8509: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8509 Component: File Quarantine Impact: A malicious application may be able to elevate privileges Description: This issue was addressed by removing the vulnerable code.

CVE-2019-11041 [HIGH] CVE-2019-11041: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-11041 Component: CVE-2019-11041

CVE-2019-8701 [HIGH] CVE-2019-8701: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8701 Component: SharedFileList Impact: A malicious application may be able to access recent documents Description: The issue was addressed with improved permissions logic.

CVE-2019-8717 [HIGH] CVE-2019-8717: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8717 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2019-8772 [HIGH] CVE-2019-8772: macOS Catalina 10.15 Apple Security Update: About the security content of macOS Catalina 10.15 Product: macOS Catalina Version: 10.15 CVE: CVE-2019-8772 Component: PDFKit Impact: An attacker may be able to exfiltrate the contents of an encrypted PDF Description: An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt.