What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2019-6212.

What is the severity of CVE-2019-6212?

The severity of CVE-2019-6212 is rated as high with a CVSS score of 8.8.

What software versions are affected by CVE-2019-6212?

The affected software versions include iOS up to version 12.1.3, tvOS up to version 12.1.2, Safari up to version 12.0.3, iTunes for Windows up to version 12.9.3, and iCloud for Windows up to version 7.10.

How can CVE-2019-6212 be exploited?

CVE-2019-6212 can be exploited by processing maliciously crafted web content, which may lead to arbitrary code execution.

How can I fix CVE-2019-6212?

To fix CVE-2019-6212, it is recommended to update the affected software to the fixed versions: iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, and iCloud for Windows 7.10.

Vulnerability/
CVE-2019-6212

high

8.8

CWE

787

22/1/2019

5/3/2019

21/11/2024

CVE-2019-6212

First published: Tue Jan 22 2019(Updated: )

Last updated 24 July 2024

Credit: Mike Zhang The Pangu teamWen Xu SSLab at Georgia TechFluoroacetate Trend MicroProteas Shrek_wzw Zhuo Liang Qihoo 360 Nirvan TeamApple product-security@apple.com an anonymous researcher

Affected Software	Affected Version	How to fix
debian/webkit2gtk		2.44.2-1~deb11u1 2.46.4-1~deb11u1 2.46.0-2~deb12u1 2.46.4-1~deb12u1 2.46.4-1
tvOS	<12.1.2	12.1.2
Apple iCloud	<7.10	7.10
iTunes	<12.9.3	12.9.3
Safari	<12.0.3	12.0.3
Apple iOS and iPadOS	<12.1.3	12.1.3
Safari	<12.0.3
iPhone OS	<12.1.3
tvOS	<12.1.2
All of
Any of
iCloud	<7.10
iTunes	<12.9.3
Microsoft Windows Operating System
Ubuntu	=18.04
Ubuntu	=18.10
iCloud	<7.10
iTunes	<12.9.3
Microsoft Windows Operating System

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2019-6212.
What is the severity of CVE-2019-6212?
The severity of CVE-2019-6212 is rated as high with a CVSS score of 8.8.
What software versions are affected by CVE-2019-6212?
The affected software versions include iOS up to version 12.1.3, tvOS up to version 12.1.2, Safari up to version 12.0.3, iTunes for Windows up to version 12.9.3, and iCloud for Windows up to version 7.10.
How can CVE-2019-6212 be exploited?
CVE-2019-6212 can be exploited by processing maliciously crafted web content, which may lead to arbitrary code execution.
How can I fix CVE-2019-6212?
To fix CVE-2019-6212, it is recommended to update the affected software to the fixed versions: iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, and iCloud for Windows 7.10.

agent/type
agent/first-publish-date
collector/launchpad-cve
source/Launchpad
agent/weakness
agent/severity
collector/mitre-cve
source/MITRE
agent/last-modified-date
collector/usn-cve
source/Ubuntu
agent/references
agent/description
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
agent/event
agent/trending
agent/source
collector/apple-support
alias/CVE-2019-6216
alias/CVE-2019-6217
alias/CVE-2019-6226
agent/software-canonical-lookup-request
agent/author
collector/nvd-api
source/NVD
agent/tags
collector/nvd-cve
agent/softwarecombine
collector/nvd-index
package-manager/debian
vendor/apple
canonical/tvos
canonical/apple icloud
canonical/itunes
canonical/safari
canonical/apple ios and ipados
canonical/iphone os
canonical/icloud
vendor/microsoft
canonical/microsoft windows operating system
vendor/canonical
canonical/ubuntu
version/ubuntu/18.04
version/ubuntu/18.10