CVE-2019-6229
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-6229
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A logic issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to universal cross site scripting.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Apple产品WebKit 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apple iOS等都是美国苹果(Apple)公司的产品。Apple iOS是为移动设备所开发的一套操作系统;Safari是一款Web浏览器,是Mac OS X和iOS操作系统附带的默认浏览器。tvOS是一套智能电视操作系统。WebKit是KDE、苹果(Apple)、谷歌(Google)等公司共同开发的一套开源Web浏览器引擎,目前被Apple Safari及Google Chrome等浏览器使用。 多款Apple产品中的WebKit组件存在安全漏洞。攻击者可借助恶意制作的Web内容利用该漏洞实施跨站脚本
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Apple | iOS | unspecified ~ iOS 12.1.3 | - | |
| Apple | tvOS | unspecified ~ tvOS 12.1.2 | - | |
| Apple | Safari | unspecified ~ Safari 12.0.3 | - | |
| Apple | iTunes for Windows | unspecified ~ iTunes 12.9.3 for Windows | - | |
| Apple | iCloud for Windows | unspecified ~ iCloud for Windows 7.10 | - |
II. Public POCs for CVE-2019-6229
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-6229
请登录查看更多情报信息。
- https://support.apple.com/HT209450x_refsource_CONFIRM
- https://support.apple.com/HT209443x_refsource_CONFIRM
- https://support.apple.com/HT209451x_refsource_CONFIRM
- https://support.apple.com/HT209447x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2019-6229
Same Patch Batch · Apple · 2019-03-05 · 28 CVEs total
| CVE-2019-6218 | 多款Apple产品libxpc组件缓冲区错误漏洞 | |
| CVE-2019-6234 | 多款Apple产品WebKit 缓冲区错误漏洞 | |
| CVE-2019-6233 | 多款Apple产品WebKit 缓冲区错误漏洞 | |
| CVE-2019-6231 | 多款Apple产品CoreAnimation 缓冲区错误漏洞 | |
| CVE-2019-6230 | 多款Apple产品CoreAnimation 资源管理错误漏洞 | |
| CVE-2019-6228 | Apple iOS和Safari Safari Reader 跨站脚本漏洞 | |
| CVE-2019-6227 | 多款Apple产品WebKit 缓冲区错误漏洞 | |
| CVE-2019-6226 | 多款Apple产品WebKit 缓冲区错误漏洞 | |
| CVE-2019-6225 | 多款Apple产品Kernel 缓冲区错误漏洞 | |
| CVE-2019-6224 | 多款Apple产品FaceTime 缓冲区错误漏洞 | |
| CVE-2019-6223 | Apple iOS和macOS Mojave FaceTime组件信息泄露漏洞 | |
| CVE-2019-6221 | Apple iOS、macOS High Sierra和macOS Mojave Core Media 缓冲区错误漏洞 | |
| CVE-2019-6220 | Apple macOS Mojave 缓冲区错误漏洞 | |
| CVE-2019-6219 | Apple iOS、watchOS和macOS Mojave Natural Language Processing 输入验证漏洞 | |
| CVE-2019-6200 | Apple iOS、macOS High Sierra和macOS Mojave Bluetooth 缓冲区错误漏洞 | |
| CVE-2019-6217 | 多款Apple产品WebKit 缓冲区错误漏洞 | |
| CVE-2019-6216 | 多款Apple产品WebKit 缓冲区错误漏洞 | |
| CVE-2019-6215 | 多款Apple产品WebKit 安全漏洞 | |
| CVE-2019-6214 | 多款Apple产品IOKit组件安全漏洞 | |
| CVE-2019-6213 | 多款Apple产品Kernel 缓冲区错误漏洞 |
Showing top 20 of 28 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2019-6229
No comments yet