What is CVE-2019-8578?

CVE-2019-8578 is a use after free vulnerability in the AirPort Base Station Firmware.

What is the severity of CVE-2019-8578?

The severity of CVE-2019-8578 is critical with a CVSS score of 9.8.

How does CVE-2019-8578 impact AirPort Base Station Firmware?

CVE-2019-8578 can allow a remote attacker to cause arbitrary code execution.

Which versions of AirPort Base Station Firmware are affected by CVE-2019-8578?

AirPort Base Station Firmware versions up to and including 7.8.1 are affected by CVE-2019-8578.

How can I fix CVE-2019-8578?

You can fix CVE-2019-8578 by updating to AirPort Base Station Firmware version 7.9.1 or later.

Vulnerability/
CVE-2019-8578

critical

9.8

CWE

416

30/5/2019

27/10/2020

4/8/2024

CVE-2019-8578: Use After Free

First published: Thu May 30 2019(Updated: )

A use after free issue was addressed with improved memory management. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.

Credit: product-security@apple.com Maxime Villard Maxime Villard

Affected Software	Affected Version	How to fix
Apple AirPort Base Station Firmware	<7.8.1
Apple AirPort Base Station Firmware Update	<7.9.1	7.9.1
Apple AirPort Base Station Firmware Update	<7.8.1	7.8.1

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT210090 (Advisory)
https://support.apple.com/en-us/HT210091 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

Frequently Asked Questions

What is CVE-2019-8578?
CVE-2019-8578 is a use after free vulnerability in the AirPort Base Station Firmware.
What is the severity of CVE-2019-8578?
The severity of CVE-2019-8578 is critical with a CVSS score of 9.8.
How does CVE-2019-8578 impact AirPort Base Station Firmware?
CVE-2019-8578 can allow a remote attacker to cause arbitrary code execution.
Which versions of AirPort Base Station Firmware are affected by CVE-2019-8578?
AirPort Base Station Firmware versions up to and including 7.8.1 are affected by CVE-2019-8578.
How can I fix CVE-2019-8578?
You can fix CVE-2019-8578 by updating to AirPort Base Station Firmware version 7.9.1 or later.

collector/nvd-index
collector/apple-support
agent/references
agent/first-publish-date
agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/author
agent/tags
agent/weakness
agent/description
agent/event
vendor/apple
canonical/apple airport base station firmware
canonical/apple airport base station firmware update

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.