CVE-2019-8773
First published: Thu Sep 19 2019(Updated: )
WebKit. Multiple memory corruption issues were addressed with improved memory handling.
Credit: found by OSS-Fuzz zhunki Codesafe Team of Legendsec at QiDongzhuo Zhao ADLab of VenustechSergei Glazunov Google Project ZeroSamuel Groß Google Project Zeroan anonymous researcher Trend Microcc Trend Micro Zero Day InitiativeJihui Lu Tencent KeenLabJunho Jang LINE Security TeamHanul Choi ABLY CorporationG. Geshev Trend Micro Zero Day Initiative product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| tvOS | <13 | 13 |
| Apple iOS, iPadOS, and watchOS | <6 | 6 |
| Apple iCloud | <7.14 | 7.14 |
| Apple iCloud | <10.7 | 10.7 |
| iTunes | <12.10.1 | 12.10.1 |
| Safari | <13.0.1 | 13.0.1 |
| iCloud for Windows | <7.14 | |
| iCloud for Windows | >=10.0<10.7 | |
| iTunes | <12.10.1 | |
| Safari | <13.0.1 | |
| iPadOS | <13.1 | |
| iPhone OS | <13.1 | |
| tvOS | <13 | |
| Apple iOS, iPadOS, and watchOS | <6.0 | |
| Apple iOS and iPadOS | <13.1 | 13.1 |
| Apple iOS, iPadOS, and macOS | <13.1 | 13.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT210603 (Advisory)
- https://support.apple.com/en-us/HT210604 (Advisory)
- https://support.apple.com/en-us/HT210605 (Advisory)
- https://support.apple.com/en-us/HT210607 (Advisory)
- https://support.apple.com/en-us/HT210635 (Advisory)
- https://support.apple.com/en-us/HT210636 (Advisory)
- https://support.apple.com/en-us/HT210637 (Advisory)
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2019-8747
- CVE-2019-8706
- CVE-2019-8850
- CVE-2019-8753
- CVE-2019-8592
- CVE-2019-8741
- CVE-2019-8705
- CVE-2019-8746
- CVE-2019-8718
- CVE-2019-8703
- CVE-2019-8740
- CVE-2019-8809
- CVE-2019-8712
- CVE-2019-8744
- CVE-2019-8709
- CVE-2019-8717
- CVE-2019-8780
- CVE-2019-8704
- CVE-2019-8749
- CVE-2019-8756
- CVE-2019-8750
- CVE-2019-8799
- CVE-2019-8745
- CVE-2019-8831
- CVE-2019-8625
- CVE-2019-8719
- CVE-2019-8764
- CVE-2019-8707
- CVE-2019-8710
- CVE-2019-8726
- CVE-2019-8728
- CVE-2019-8733
- CVE-2019-8734
- CVE-2019-8735
- CVE-2019-8743
- CVE-2019-8751
- CVE-2019-8752
- CVE-2019-8763
- CVE-2019-8765
- CVE-2019-8766
- CVE-2019-8773
- CVE-2019-8762
- CVE-2020-9932
- CVE-2019-8854
- CVE-2019-8825
- CVE-2019-8654
- CVE-2019-8725
- CVE-2019-8771
- CVE-2019-8774
- CVE-2019-8901
- CVE-2019-8775
- CVE-2019-8769
Frequently Asked Questions
What is CVE-2019-8773?
CVE-2019-8773 is a vulnerability in WebKit that allows processing maliciously crafted web content to lead to arbitrary code execution.
How severe is CVE-2019-8773?
The severity of CVE-2019-8773 is high with a CVSS score of 8.8.
Which software versions are affected by CVE-2019-8773?
The software versions affected are Safari 13.0.1, watchOS 6, iCloud for Windows 10.7, iTunes 12.10.1 for Windows, tvOS 13, iOS 13.1, and iPadOS 13.1.
How can CVE-2019-8773 be fixed?
To fix CVE-2019-8773, update to the following versions: Safari 13.0.1, watchOS 6, iCloud for Windows 10.7, iTunes 12.10.1 for Windows, tvOS 13, iOS 13.1, and iPadOS 13.1.
Where can I find more information about CVE-2019-8773?
More information about CVE-2019-8773 can be found on the Apple support page: [link](https://support.apple.com/en-us/HT210603).
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/references
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- collector/apple-support
- alias/CVE-2019-8710
- alias/CVE-2019-8726
- alias/CVE-2019-8728
- alias/CVE-2019-8733
- alias/CVE-2019-8734
- alias/CVE-2019-8735
- alias/CVE-2019-8743
- alias/CVE-2019-8751
- alias/CVE-2019-8752
- alias/CVE-2019-8763
- alias/CVE-2019-8765
- alias/CVE-2019-8766
- alias/CVE-2019-8773
- agent/software-canonical-lookup-request
- agent/author
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- vendor/apple
- canonical/tvos
- canonical/apple ios, ipados, and watchos
- canonical/apple icloud
- canonical/itunes
- canonical/safari
- canonical/icloud for windows
- version/icloud for windows/10.0
- canonical/ipados
- canonical/iphone os
- canonical/apple ios and ipados
- canonical/apple ios, ipados, and macos