First published: Mon May 13 2019(Updated: )
MobileLockdown. An input validation issue was addressed with improved input validation.
Credit: Dany Lisiansky @DanyL931 Dany Lisiansky @DanyL931 Dany Lisiansky @DanyL931 product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPhone OS | <12.3 | |
Apple tvOS | <12.3 | |
Apple watchOS | <5.2.1 | |
Apple watchOS | <5.2.1 | 5.2.1 |
Apple iOS | <12.3 | 12.3 |
Apple tvOS | <12.3 | 12.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2019-8637 is a vulnerability in Apple iOS, tvOS, and watchOS that allows a malicious application to gain root privileges.
CVE-2019-8637 has a severity rating of critical (7.8).
Apple iOS versions up to (but not including) 12.3 are affected by CVE-2019-8637.
To fix the CVE-2019-8637 vulnerability in Apple iOS, update to version 12.3 or later.
Yes, Apple tvOS versions up to (but not including) 12.3 and watchOS versions up to (but not including) 5.2.1 are affected by CVE-2019-8637.