CVE-2019-8765 - Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed

CVE-2019-8765

Summary

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to arbitrary code execution.

References

Vulnerable Configurations

cpe:2.3:o:apple:watchos:1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:2.2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.2.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:3.2.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.2.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.2.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3.7:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3.7:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:5.3.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:6.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:6.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:6.0.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:6.0.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:6.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:6.0.1:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 30-11-2021 - 21:07)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

redhat via4

rpms

webkit2gtk3-0:2.24.4-2.el8_1
webkit2gtk3-debuginfo-0:2.24.4-2.el8_1
webkit2gtk3-debugsource-0:2.24.4-2.el8_1
webkit2gtk3-devel-0:2.24.4-2.el8_1
webkit2gtk3-devel-debuginfo-0:2.24.4-2.el8_1
webkit2gtk3-jsc-0:2.24.4-2.el8_1
webkit2gtk3-jsc-debuginfo-0:2.24.4-2.el8_1
webkit2gtk3-jsc-devel-0:2.24.4-2.el8_1
webkit2gtk3-jsc-devel-debuginfo-0:2.24.4-2.el8_1
webkit2gtk3-plugin-process-gtk2-0:2.24.4-2.el8_1
webkit2gtk3-plugin-process-gtk2-debuginfo-0:2.24.4-2.el8_1
webkitgtk4-0:2.28.2-2.el7
webkitgtk4-debuginfo-0:2.28.2-2.el7
webkitgtk4-devel-0:2.28.2-2.el7
webkitgtk4-doc-0:2.28.2-2.el7
webkitgtk4-jsc-0:2.28.2-2.el7
webkitgtk4-jsc-devel-0:2.28.2-2.el7

refmap via4

gentoo	GLSA-202003-22
misc	https://support.apple.com/HT210724

Last major update

30-11-2021 - 21:07

Published

18-12-2019 - 18:15

Last modified

30-11-2021 - 21:07