Security Alert (A19-05-05): Multiple Vulnerabilities in Apple iOS


 

Published on: 14 May 2019

  
  

Description:

Apple has released a security update in its latest iOS version 12.3 to fix 40 vulnerabilities identified in various iOS devices. These vulnerabilities could be exploited by enticing a user to open a specially crafted application, movie, email, or malicious website.  An attacker may also bypass security features with physical access.

 

Affected Systems:

  • iPhone 5s and later
  • iPad Air and later
  • iPod touch (6th generation)

 

Impact:

A successful attack could lead to arbitrary code execution, denial of service, elevate privileges, data tampering, information disclosure or security restrictions bypass.

 

Recommendation:

The product vendor has released iOS 12.3 to address the issues.

The updates can be obtained through the auto-update mechanism.  Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

https://support.apple.com/kb/HT210118
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6237
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8560
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8568
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8571
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8574
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8576
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8577
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8583 (to CVE-2019-8587)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8591
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8593 (to CVE-2019-8602)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8605
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8607 (to CVE-2019-8611)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8613
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8615
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8617
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8619
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8620
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8622
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8623
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8626
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8630
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8637

 



Tag: Apple , iOS , iPhone , iPad , iPod
Tags