CVE-2019-8620: Infoleak
Wi-Fi. A user privacy issue was addressed by removing the broadcast MAC address.
Other sources
A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. A device may be passively tracked by its WiFi MAC address.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2019-8593
- CVE-2019-2102
- CVE-2019-8592
- CVE-2019-8585
- CVE-2019-8582
- CVE-2019-8560
- CVE-2019-8633
- CVE-2019-8576
- CVE-2019-8591
- CVE-2019-8631
- CVE-2019-8568
- CVE-2019-8637
- CVE-2019-8577
- CVE-2019-8600
- CVE-2019-8598
- CVE-2019-8602
- CVE-2019-8574
- CVE-2019-8607
- CVE-2019-6237
- CVE-2019-8571
- CVE-2019-8583
- CVE-2019-8584
- CVE-2019-8586
- CVE-2019-8587
- CVE-2019-8594
- CVE-2019-8595
- CVE-2019-8596
- CVE-2019-8597
- CVE-2019-8601
- CVE-2019-8608
- CVE-2019-8609
- CVE-2019-8610
- CVE-2019-8611
- CVE-2019-8615
- CVE-2019-8619
- CVE-2019-8622
- CVE-2019-8623
- CVE-2019-8628
- CVE-2019-8612
- CVE-2019-8620
- CVE-2019-8605
- CVE-2019-8626
- CVE-2019-8613
- CVE-2019-8664
- CVE-2019-8573
- CVE-2019-8599
- CVE-2019-8617
- CVE-2019-8630
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2019-8620.
What is the severity of CVE-2019-8620?
The severity of CVE-2019-8620 is high with a CVSS score of 7.5.
What is the description of CVE-2019-8620?
CVE-2019-8620 is a user privacy issue that was addressed by removing the broadcast MAC address. A device may be passively tracked by its WiFi MAC address.
Which software versions are affected by CVE-2019-8620?
iOS versions up to but excluding 12.3, tvOS versions up to but excluding 12.3, and watchOS versions up to but excluding 5.2.1 are affected by CVE-2019-8620.
How can I fix CVE-2019-8620?
Update your device's iOS, tvOS, or watchOS software to version 12.3, 12.3, or 5.2.1 respectively.