Home > Vulnerability Database > CVE-2019-8846

Mend.io Vulnerability Database

CVE-2019-8846

Good to know:

Date: October 27, 2020

A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 13.3, iCloud for Windows 10.9, iOS 13.3 and iPadOS 13.3, Safari 13.0.4, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. Processing maliciously crafted web content may lead to arbitrary code execution.

Language: C

Severity Score

8.8

Related Resources (12)

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-8846

Url: https://security-tracker.debian.org/tracker/CVE-2019-8846

Url: https://support.apple.com/en-us/HT210790

Url: https://support.apple.com/en-us/HT210793

Url: https://support.apple.com/en-us/HT210792

Url: https://access.redhat.com/security/cve/CVE-2019-8846

Url: https://security.alpinelinux.org/vuln/CVE-2019-8846

Url: https://support.apple.com/en-us/HT210795

Url: https://support.apple.com/en-us/HT210794

Url: https://support.apple.com/en-us/HT210785

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-8846

Url: https://www.mend.io/vulnerability-database/CVE-2019-8846

Severity Score

8.8

Weakness Type (CWE)

Use After Free

CWE-416

Top Fix

Upgrade Version

Upgrade to version 2.26.3-1

Learn More

CVSS v3.1

Base Score:	8.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	9.3
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-8846

Good to know:

Date: October 27, 2020

Language: C

Severity Score

Related Resources (12)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?