CVE-2019-8553

Severity CVSS v4.0:
Pending analysis
Type:
CWE-787 Out-of-bounds Write
Publication date:
18/12/2019
Last modified:
24/08/2020

Description

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2. Clicking a malicious SMS link may lead to arbitrary code execution.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* 12.2 (excluding)
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* 12.2 (excluding)
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* 5.2 (excluding)