Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-8505

EPSS 0.23% · P46
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-8505

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apple iOS和Apple Safari Reader组件跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apple Safari和Apple iOS都是美国苹果(Apple)公司的产品。Apple Safari是一款Web浏览器,是Mac OS X和iOS操作系统附带的默认浏览器。Apple iOS是一套为移动设备所开发的操作系统。Safari Reader是其中的一个阅读器组件。 Apple iOS 12.2之前版本和Safari 12.1之前版本中的Safari Reader组件存在安全漏洞。攻击者可借助恶意的页面利用该漏洞注入任意的Web脚本或HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
AppleiOS unspecified ~ iOS 12.2 -
AppleSafari unspecified ~ Safari 12.1 -

II. Public POCs for CVE-2019-8505

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-8505

登录查看更多情报信息。

Same Patch Batch · Apple · 2019-12-18 · 245 CVEs total

CVE-2019-8602多款Apple产品SQLite组件缓冲区错误漏洞
CVE-2019-8644多款Apple产品WebKit组件资源管理错误漏洞
CVE-2019-8560多款Apple产品Disk Images组件缓冲区错误漏洞
CVE-2019-8561Apple macOS Mojave PackageKit组件输入验证错误漏洞
CVE-2019-8565Apple iOS和Apple macOS Mojave Feedback Assistant组件竞争条件问题漏洞
CVE-2019-8566Apple iOS ReplayKit组件信息泄露漏洞
CVE-2019-8567Apple iOS Wi-Fi组件信息泄露漏洞
CVE-2019-8589Apple macOS Mojave DesktopServices组件输入验证错误漏洞
CVE-2019-8591多款Apple产品Kernel组件安全漏洞
CVE-2019-8593多款Apple产品AppleFileConduit组件缓冲区错误漏洞
CVE-2019-8595多款Apple产品WebKit组件缓冲区错误漏洞
CVE-2019-8596多款Apple产品WebKit组件缓冲区错误漏洞
CVE-2019-8597多款Apple产品WebKit组件缓冲区错误漏洞
CVE-2019-8598多款Apple产品SQLite组件缓冲区错误漏洞
CVE-2019-8600多款Apple产品SQLite组件SQL注入漏洞
CVE-2019-8601多款Apple产品WebKit组件输入验证错误漏洞
CVE-2019-8613Apple iOS和Apple watchOS Mail Message Framework组件存在资源管理错误漏洞
CVE-2019-8617Apple iOS Photos Storage组件输入验证错误漏洞
CVE-2019-8620Apple iOS、Apple tvOS和watchOS Wi-Fi组件信息泄露漏洞
CVE-2019-8610多款Apple产品WebKit组件资源管理错误漏洞

Showing top 20 of 245 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: iOS
Same vendor: Apple

V. Comments for CVE-2019-8505

No comments yet

Leave a comment