CVE-2019-8702 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2019-8702

Analyzed

More Info Official Page

Source-product-security@apple.com

Published At-23 Dec, 2021 | 20:15

Updated At-05 Jan, 2022 | 20:47

This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user may be able to read a persistent account identifier.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Primary	2.0	2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

>>iphone_os>>Versions before 12.4(exclusive)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

>>mac_os_x>>Versions before 10.14.6(exclusive)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

>>mac_os_x>>Versions from 10.12(inclusive) to 10.12.6(exclusive)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

>>mac_os_x>>Versions from 10.13(inclusive) to 10.13.6(exclusive)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:-:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2017-001:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2017-002:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2018-001:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2018-002:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2018-003:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2018-004:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2018-005:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2018-006:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2019-001:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2019-002:*:*:*:*:*:*

>>mac_os_x>>10.12.6

cpe:2.3:o:apple:mac_os_x:10.12.6:security_update_2019-003:*:*:*:*:*:*

>>mac_os_x>>10.13.6

cpe:2.3:o:apple:mac_os_x:10.13.6:-:*:*:*:*:*:*

>>mac_os_x>>10.13.6

cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2018-002:*:*:*:*:*:*

>>mac_os_x>>10.13.6

cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2018-003:*:*:*:*:*:*

>>mac_os_x>>10.13.6

cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-001:*:*:*:*:*:*

>>mac_os_x>>10.13.6

cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-002:*:*:*:*:*:*

>>mac_os_x>>10.13.6

cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-003:*:*:*:*:*:*

>>tvos>>Versions before 12.4(exclusive)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-668	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://support.apple.com/en-us/HT210346	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT210348	product-security@apple.com	Vendor Advisory
https://support.apple.com/en-us/HT210351	product-security@apple.com	Vendor Advisory