CVE-2019-8579: Input Validation

Q: What is CVE-2019-8579?

CVE-2019-8579 is an input validation issue in Modem CCL that allows an application to gain elevated privileges.

Q: What is the severity of CVE-2019-8579?

The severity of CVE-2019-8579 is high with a CVSS score of 7.8.

Q: How does CVE-2019-8579 affect macOS Mojave?

CVE-2019-8579 affects macOS Mojave versions up to and including 10.14.4.

Q: How can I fix CVE-2019-8579 on macOS Mojave?

To fix CVE-2019-8579 on macOS Mojave, update to version 10.14.4 or higher.

Q: Where can I find more information about CVE-2019-8579?

More information about CVE-2019-8579 can be found at the Apple support website: https://support.apple.com/en-us/HT209600.

Published Mar 25, 2019

Updated

An input validation issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An application may be able to gain elevated privileges.

Other sources

Modem CCL. An input validation issue was addressed with improved memory handling.

Credit

an anonymous researcher

Affected Software

4 affected componentsFixes available

Apple macOS Mojave<10.14.4

10.14.4

Apple High Sierra

Apple Sierra

Apple iOS and macOS<10.14.4

Event History

Oct 27, 2020

CVE Published

via MITRE·07:26 PM

Data Sourced

via MITRE·07:26 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT209600

Frequently Asked Questions

What is CVE-2019-8579?

CVE-2019-8579 is an input validation issue in Modem CCL that allows an application to gain elevated privileges.

What is the severity of CVE-2019-8579?

The severity of CVE-2019-8579 is high with a CVSS score of 7.8.

How does CVE-2019-8579 affect macOS Mojave?

CVE-2019-8579 affects macOS Mojave versions up to and including 10.14.4.

How can I fix CVE-2019-8579 on macOS Mojave?