What is CVE-2019-8785?

CVE-2019-8785 is a memory corruption vulnerability in Apple's iOS, iPadOS, macOS Catalina, tvOS, and watchOS, which allows an application to execute arbitrary code with system privileges.

What is the severity of CVE-2019-8785?

The severity of CVE-2019-8785 is critical with a CVSS score of 7.8.

Which software versions are affected by CVE-2019-8785?

CVE-2019-8785 affects iOS versions up to but excluding 13.2, iPadOS versions up to but excluding 13.2, macOS Catalina versions up to but excluding 10.15.1, tvOS versions up to but excluding 13.2, and watchOS versions up to but excluding 6.1.

How can I fix CVE-2019-8785?

To fix CVE-2019-8785, update your Apple devices to iOS 13.2 or later, iPadOS 13.2 or later, macOS Catalina 10.15.1 or later, tvOS 13.2 or later, and watchOS 6.1 or later.

Where can I find more information about CVE-2019-8785?

More information about CVE-2019-8785 can be found on the Apple Support website at the following links: [Apple Support - HT210721](https://support.apple.com/en-us/HT210721), [Apple Support - HT210724](https://support.apple.com/en-us/HT210724), [Apple Support - HT210722](https://support.apple.com/en-us/HT210722).

Vulnerability/
CVE-2019-8785

critical

9.3

CWE

787

28/10/2019

18/12/2019

21/7/2021

CVE-2019-8785

First published: Mon Oct 28 2019(Updated: )

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with system privileges.

Credit: Ian Beer Google Project Zero08Tc3wBB SSD Secure DisclosureIan Beer Google Project Zero08Tc3wBB SSD Secure DisclosureIan Beer Google Project Zero08Tc3wBB SSD Secure DisclosureIan Beer Google Project Zero08Tc3wBB SSD Secure Disclosure product-security@apple.com

Affected Software	Affected Version	How to fix
Apple iPadOS	<=13.2
Apple iPhone OS	<13.2
Apple Mac OS X	<10.15.1
Apple tvOS	<13.2
Apple watchOS	<6.1
Apple tvOS	<13.2	13.2
Apple iOS	<13.2	13.2
Apple iPadOS	<13.2	13.2
Apple macOS Catalina	<10.15.1	10.15.1
Apple watchOS	<6.1	6.1

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2019-8787
CVE-2019-8796
CVE-2019-8803
CVE-2019-8788
CVE-2019-8785
CVE-2019-8797
CVE-2019-8795
CVE-2019-8789
CVE-2017-7152
CVE-2019-8798
CVE-2019-8784
CVE-2019-8794
CVE-2019-8786
CVE-2019-8829
CVE-2019-8804
CVE-2019-8793
CVE-2019-8813
CVE-2019-8782
CVE-2019-8783
CVE-2019-8808
CVE-2019-8811
CVE-2019-8812
CVE-2019-8814
CVE-2019-8816
CVE-2019-8819
CVE-2019-8820
CVE-2019-8821
CVE-2019-8822
CVE-2019-8823
CVE-2019-8827
CVE-2019-8815
CVE-2019-15126
CVE-2019-8748
CVE-2019-11041
CVE-2019-11042
CVE-2019-8824
CVE-2019-8817
CVE-2019-8716
CVE-2019-8706
CVE-2019-8850
CVE-2019-8592
CVE-2019-8705
CVE-2019-8825
CVE-2019-8736
CVE-2019-8767
CVE-2019-8737
CVE-2019-8509
CVE-2019-8746
CVE-2018-12152
CVE-2018-12153
CVE-2018-12154
CVE-2019-8807
CVE-2019-8759
CVE-2019-8801
CVE-2019-8709
CVE-2019-8717
CVE-2019-8744
CVE-2019-8749
CVE-2019-8756
CVE-2019-8750
CVE-2019-8802
CVE-2019-8772
CVE-2019-8708
CVE-2019-8715
CVE-2019-8858
CVE-2019-8805
CVE-2019-8754
CVE-2019-8745
CVE-2019-8831
CVE-2019-8761
CVE-2019-8747
CVE-2019-8775
CVE-2019-8764
CVE-2019-8743
CVE-2019-8765
CVE-2019-8766

Frequently Asked Questions

What is CVE-2019-8785?
CVE-2019-8785 is a memory corruption vulnerability in Apple's iOS, iPadOS, macOS Catalina, tvOS, and watchOS, which allows an application to execute arbitrary code with system privileges.
What is the severity of CVE-2019-8785?
The severity of CVE-2019-8785 is critical with a CVSS score of 7.8.
Which software versions are affected by CVE-2019-8785?
CVE-2019-8785 affects iOS versions up to but excluding 13.2, iPadOS versions up to but excluding 13.2, macOS Catalina versions up to but excluding 10.15.1, tvOS versions up to but excluding 13.2, and watchOS versions up to but excluding 6.1.
How can I fix CVE-2019-8785?
To fix CVE-2019-8785, update your Apple devices to iOS 13.2 or later, iPadOS 13.2 or later, macOS Catalina 10.15.1 or later, tvOS 13.2 or later, and watchOS 6.1 or later.
Where can I find more information about CVE-2019-8785?
More information about CVE-2019-8785 can be found on the Apple Support website at the following links: [Apple Support - HT210721](https://support.apple.com/en-us/HT210721), [Apple Support - HT210724](https://support.apple.com/en-us/HT210724), [Apple Support - HT210722](https://support.apple.com/en-us/HT210722).

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
collector/apple-support
alias/CVE-2019-8797
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/apple ios
canonical/apple ipados
canonical/apple macos catalina
canonical/apple tvos
canonical/apple watchos
version/apple ipados/13.2
canonical/apple iphone os
canonical/apple mac os x