What is CVE-2019-8808?

CVE-2019-8808 is a vulnerability in WebKit that allows for arbitrary code execution when processing malicious web content.

How severe is CVE-2019-8808?

CVE-2019-8808 has a severity rating of 8.8, which is considered high.

Which software versions are affected by CVE-2019-8808?

CVE-2019-8808 affects iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, and iTunes for Windows 12.10.2.

How can I fix CVE-2019-8808?

To fix CVE-2019-8808, you should update your software to the fixed versions: iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, and iTunes for Windows 12.10.2.

Where can I find more information about CVE-2019-8808?

You can find more information about CVE-2019-8808 on the Apple support website (https://support.apple.com/en-us/HT210721, https://support.apple.com/en-us/HT210726) and the Red Hat security advisory (https://access.redhat.com/security/cve/CVE-2019-8808).

Vulnerability/
CVE-2019-8808

high

8.8

CWE

787

28/10/2019

18/12/2019

4/8/2024

CVE-2019-8808

First published: Mon Oct 28 2019(Updated: )

WebKit. Multiple memory corruption issues were addressed with improved memory handling.

Credit: Cheolung Lee LINEfound by OSS-Fuzz Soyeon Park SSLab at Georgia TechJunDong Xie AntSamuel Groß Google Project ZeroSergei Glazunov Google Project Zerozhunki Codesafe Team of Legendsec at Qi product-security@apple.com

Affected Software	Affected Version	How to fix
redhat/webkitgtk	<2.26.0	2.26.0
tvOS	<13.2	13.2
Apple Mobile Safari	<13.0.3	13.0.3
Apple iOS, iPadOS, and watchOS	<13.2	13.2
Apple iOS, iPadOS, and watchOS	<13.2	13.2
Apple iOS, iPadOS, and watchOS	<6.1	6.1
iTunes	<12.10.2	12.10.2
iTunes	<12.10.2
Apple Mobile Safari	<13.0.3
Apple iOS, iPadOS, and watchOS	<13.2
iStyle @cosme iPhone OS	<13.2
tvOS	<13.2
Apple iOS, iPadOS, and watchOS	<6.1

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is CVE-2019-8808?
CVE-2019-8808 is a vulnerability in WebKit that allows for arbitrary code execution when processing malicious web content.
How severe is CVE-2019-8808?
CVE-2019-8808 has a severity rating of 8.8, which is considered high.
Which software versions are affected by CVE-2019-8808?
CVE-2019-8808 affects iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, and iTunes for Windows 12.10.2.
How can I fix CVE-2019-8808?
To fix CVE-2019-8808, you should update your software to the fixed versions: iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, and iTunes for Windows 12.10.2.
Where can I find more information about CVE-2019-8808?
You can find more information about CVE-2019-8808 on the Apple support website (https://support.apple.com/en-us/HT210721, https://support.apple.com/en-us/HT210726) and the Red Hat security advisory (https://access.redhat.com/security/cve/CVE-2019-8808).

agent/type
agent/first-publish-date
agent/references
agent/severity
agent/weakness
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2019-8808
agent/software-canonical-lookup
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/trending
agent/source
collector/apple-support
alias/CVE-2019-8783
alias/CVE-2019-8811
alias/CVE-2019-8812
alias/CVE-2019-8814
alias/CVE-2019-8816
alias/CVE-2019-8819
alias/CVE-2019-8820
alias/CVE-2019-8821
alias/CVE-2019-8822
alias/CVE-2019-8823
agent/software-canonical-lookup-request
agent/author
alias/CVE-2019-8765
alias/CVE-2019-8766
agent/softwarecombine
agent/tags
collector/nvd-index
package-manager/redhat
vendor/apple
canonical/tvos
canonical/apple mobile safari
canonical/apple ios, ipados, and watchos
canonical/itunes
canonical/istyle @cosme iphone os