Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2019-8834
PUBLISHED
More InfoOfficial Page
Assigner-apple
Assigner Org ID-286789f9-fbc2-4510-9f9a-43facdede74c
View Known Exploited Vulnerability (KEV) details
Published At-27 Oct, 2020 | 19:53
Updated At-04 Aug, 2024 | 21:31
Rejected At-
▼CVE Numbering Authority (CNA)

A configuration issue was addressed with additional restrictions. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. An attacker in a privileged network position may be able to bypass HSTS for a limited number of specific top-level domains previously not in the HSTS preload list.

Affected Products
Vendor
Apple Inc.Apple
Product
iOS and iPadOS
Versions
Affected
  • From unspecified before 13.3 (custom)
Vendor
Apple Inc.Apple
Product
macOS
Versions
Affected
  • From unspecified before 10.15 (custom)
Vendor
Apple Inc.Apple
Product
macOS
Versions
Affected
  • From unspecified before 6.1 (custom)
Vendor
Apple Inc.Apple
Product
macOS
Versions
Affected
  • From unspecified before 13.3 (custom)
Vendor
Apple Inc.Apple
Product
macOS
Versions
Affected
  • From unspecified before 12.10 (custom)
Vendor
Apple Inc.Apple
Product
macOS
Versions
Affected
  • From unspecified before 10.9 (custom)
Vendor
Apple Inc.Apple
Product
macOS
Versions
Affected
  • From unspecified before 7.16 (custom)
Problem Types
TypeCWE IDDescription
textN/AAn attacker in a privileged network position may be able to bypass HSTS for a limited number of specific top-level domains previously not in the HSTS preload list
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://support.apple.com/en-us/HT210785
x_refsource_MISC
https://support.apple.com/en-us/HT210788
x_refsource_MISC
https://support.apple.com/en-us/HT210789
x_refsource_MISC
https://support.apple.com/en-us/HT210790
x_refsource_MISC
https://support.apple.com/en-us/HT210793
x_refsource_MISC
https://support.apple.com/en-us/HT210794
x_refsource_MISC
https://support.apple.com/en-us/HT210795
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://support.apple.com/en-us/HT210785
x_refsource_MISC
x_transferred
https://support.apple.com/en-us/HT210788
x_refsource_MISC
x_transferred
https://support.apple.com/en-us/HT210789
x_refsource_MISC
x_transferred
https://support.apple.com/en-us/HT210790
x_refsource_MISC
x_transferred
https://support.apple.com/en-us/HT210793
x_refsource_MISC
x_transferred
https://support.apple.com/en-us/HT210794
x_refsource_MISC
x_transferred
https://support.apple.com/en-us/HT210795
x_refsource_MISC
x_transferred
Details not found