CVE-2019-8624: Input Validation
Published Jul 22, 2019
·Updated
Digital Touch. An out-of-bounds read was addressed with improved input validation.
Other sources
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 5.3. A remote attacker may be able to leak memory.
Credit
Natalie Silvanovich(Google Project Zero)
Affected Software
2 affected componentsFixes available
Apple WatchOS<5.3
5.3
Apple WatchOS<5.3
Event History
Dec 18, 2019
CVE Published
via MITRE·05:33 PM
Data Sourced
via MITRE·05:33 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2019-9506
- CVE-2020-10135
- CVE-2019-8646
- CVE-2019-8647
- CVE-2019-8660
- CVE-2019-8624
- CVE-2019-8648
- CVE-2018-16860
- CVE-2019-8668
- CVE-2019-8633
- CVE-2019-13118
- CVE-2019-8659
- CVE-2019-8665
- CVE-2019-8662
- CVE-2019-8657
- CVE-2019-8682
- CVE-2019-8658
- CVE-2019-8669
- CVE-2019-8672
- CVE-2019-8676
- CVE-2019-8683
- CVE-2019-8684
- CVE-2019-8685
- CVE-2019-8688
- CVE-2019-8689
Frequently Asked Questions
1
What is the vulnerability ID?
The vulnerability ID is CVE-2019-8624.
2
What is the severity of CVE-2019-8624?
The severity of CVE-2019-8624 is high, with a severity value of 7.5.
3
How does CVE-2019-8624 affect watchOS?
CVE-2019-8624 affects watchOS version up to exclusive 5.3.
4
How can CVE-2019-8624 be fixed?
CVE-2019-8624 can be fixed by updating watchOS to version 5.3 or higher.
5
Is there any additional information available about CVE-2019-8624?
Additional information about CVE-2019-8624 can be found in the references provided by Apple: [Reference 1](https://support.apple.com/en-us/HT210353) and [Reference 2](https://support.apple.com/HT210353).