What is CVE-2019-8633?

CVE-2019-8633 is a validation issue in the macOS Kernel that allows an application to read restricted memory.

What is the severity of CVE-2019-8633?

The severity of CVE-2019-8633 is high with a CVSS score of 7.5.

Which products are affected by CVE-2019-8633?

macOS Mojave 10.14.5, High Sierra, Sierra, iOS 12.3, tvOS 12.3, watchOS 5.3, Apple iPhone OS (up to version 12.3), Apple Mac OS X (between versions 10.13.6 and 10.14.5), Apple tvOS (up to version 12.3), and Apple watchOS (up to version 5.3) are affected by CVE-2019-8633.

Where can I find more information about CVE-2019-8633?

You can find more information about CVE-2019-8633 on the following Apple support pages: [Link 1](https://support.apple.com/en-us/HT210119), [Link 2](https://support.apple.com/en-us/HT210118), [Link 3](https://support.apple.com/en-us/HT210120).

Vulnerability/
CVE-2019-8633

high

7.5

CWE

13/5/2019

27/10/2020

4/8/2024

CVE-2019-8633: Input Validation

Q: How can I fix CVE-2019-8633?

You can fix CVE-2019-8633 by installing the latest security updates: macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3, and watchOS 5.3.

First published: Mon May 13 2019(Updated: )

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3, watchOS 5.3. An application may be able to read restricted memory.

Credit: Zhuo Liang Qihoo 360 Vulcan TeamZhuo Liang Qihoo 360 Vulcan TeamZhuo Liang Qihoo 360 Vulcan TeamZhuo Liang Qihoo 360 Vulcan Team product-security@apple.com

Affected Software	Affected Version	How to fix
Apple iPhone OS	<12.3
Apple Mac OS X	>=10.13.6<10.14.5
Apple tvOS	<12.3
Apple watchOS	<5.3
Apple iOS	<12.3	12.3
Apple tvOS	<12.3	12.3
Apple watchOS	<5.3	5.3
Apple macOS Mojave	<10.14.5	10.14.5
Apple High Sierra
Apple Sierra

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT210118 (Advisory)
https://support.apple.com/en-us/HT210119 (Advisory)
https://support.apple.com/en-us/HT210120 (Advisory)
https://support.apple.com/en-us/HT210353 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2019-9506
CVE-2020-10135
CVE-2019-8646
CVE-2019-8647
CVE-2019-8660
CVE-2019-8624
CVE-2019-8648
CVE-2018-16860
CVE-2019-8668
CVE-2019-8633
CVE-2019-13118
CVE-2019-8659
CVE-2019-8665
CVE-2019-8662
CVE-2019-8657
CVE-2019-8682
CVE-2019-8658
CVE-2019-8669
CVE-2019-8672
CVE-2019-8676
CVE-2019-8683
CVE-2019-8684
CVE-2019-8685
CVE-2019-8688
CVE-2019-8689
CVE-2019-8603
CVE-2019-8635
CVE-2019-8590
CVE-2019-8640
CVE-2019-2102
CVE-2019-8592
CVE-2019-8585
CVE-2019-8582
CVE-2019-8589
CVE-2019-8560
CVE-2019-8634
CVE-2019-8616
CVE-2019-8629
CVE-2018-4456
CVE-2019-8606
CVE-2019-8525
CVE-2019-8547
CVE-2019-8576
CVE-2019-8591
CVE-2019-8573
CVE-2019-8631
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2019-11091
CVE-2019-8604
CVE-2019-8577
CVE-2019-8600
CVE-2019-8598
CVE-2019-8602
CVE-2019-8568
CVE-2019-8574
CVE-2019-8569
CVE-2019-6237
CVE-2019-8571
CVE-2019-8583
CVE-2019-8584
CVE-2019-8586
CVE-2019-8587
CVE-2019-8594
CVE-2019-8595
CVE-2019-8596
CVE-2019-8597
CVE-2019-8601
CVE-2019-8608
CVE-2019-8609
CVE-2019-8610
CVE-2019-8611
CVE-2019-8615
CVE-2019-8619
CVE-2019-8622
CVE-2019-8623
CVE-2019-8628
CVE-2019-8607
CVE-2019-8612
CVE-2019-8593
CVE-2019-8637
CVE-2019-8620
CVE-2019-8599
CVE-2019-8626
CVE-2019-8613
CVE-2019-8664
CVE-2019-8617
CVE-2019-8630

Frequently Asked Questions

What is CVE-2019-8633?
CVE-2019-8633 is a validation issue in the macOS Kernel that allows an application to read restricted memory.
What is the severity of CVE-2019-8633?
The severity of CVE-2019-8633 is high with a CVSS score of 7.5.
How can I fix CVE-2019-8633?
You can fix CVE-2019-8633 by installing the latest security updates: macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3, and watchOS 5.3.
Which products are affected by CVE-2019-8633?
macOS Mojave 10.14.5, High Sierra, Sierra, iOS 12.3, tvOS 12.3, watchOS 5.3, Apple iPhone OS (up to version 12.3), Apple Mac OS X (between versions 10.13.6 and 10.14.5), Apple tvOS (up to version 12.3), and Apple watchOS (up to version 5.3) are affected by CVE-2019-8633.
Where can I find more information about CVE-2019-8633?
You can find more information about CVE-2019-8633 on the following Apple support pages: [Link 1](https://support.apple.com/en-us/HT210119), [Link 2](https://support.apple.com/en-us/HT210118), [Link 3](https://support.apple.com/en-us/HT210120).

agent/references
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/apple-support
agent/software-canonical-lookup-request
collector/nvd-index
agent/event
agent/weakness
agent/severity
agent/author
agent/tags
agent/description
collector/mitre-cve
source/MITRE
vendor/apple
canonical/apple watchos
canonical/apple macos mojave
canonical/apple high sierra
canonical/apple sierra
canonical/apple iphone os
canonical/apple mac os x
version/apple mac os x/10.13.6
canonical/apple tvos
canonical/apple ios