Vulnerabilities > Apple > Iphone OS > 4.2.10

DATE CVE VULNERABILITY TITLE RISK
2020-10-27 CVE-2019-8901 Improper Verification of Cryptographic Signature vulnerability in Apple Ipados and Iphone OS
This issue was addressed by verifying host keys when connecting to a previously-known SSH server.
network
low complexity
apple CWE-347
4.0
2020-10-27 CVE-2019-8898 Insecure Storage of Sensitive Information vulnerability in Apple products
An information disclosure issue existed in the handling of the Storage Access API.
network
apple CWE-922
4.3
2020-10-27 CVE-2019-8857 Missing Authorization vulnerability in Apple Ipados and Iphone OS
The issue was addressed with improved validation when an iCloud Link is created.
local
low complexity
apple CWE-862
2.1
2020-10-27 CVE-2019-8856 Missing Authorization vulnerability in Apple products
An API issue existed in the handling of outgoing phone calls initiated with Siri.
network
apple CWE-862
4.3
2020-10-27 CVE-2019-8854 Unspecified vulnerability in Apple products
A user privacy issue was addressed by removing the broadcast MAC address.
network
low complexity
apple
5.0
2020-10-27 CVE-2019-8850 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
network
apple CWE-125
4.3
2020-10-27 CVE-2019-8848 Improper Privilege Management vulnerability in Apple products
This issue was addressed with improved checks.
network
apple CWE-269
6.8
2020-10-27 CVE-2019-8846 Use After Free vulnerability in multiple products
A use after free issue was addressed with improved memory management.
network
apple redhat CWE-416
critical
9.3
2020-10-27 CVE-2019-8796 Unspecified vulnerability in Apple products
A logic issue was addressed with improved validation.
network
apple
4.3
2020-10-27 CVE-2019-8664 Improper Input Validation vulnerability in Apple Iphone OS and Watchos
An input validation issue was addressed with improved input validation.
network
apple CWE-20
4.3