CVE-2019-8804: Medium severity apple ios and ipados vulnerability

Q: What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2019-8804.

Q: What is the severity level of CVE-2019-8804?

The severity level of CVE-2019-8804 is medium.

Q: How does CVE-2019-8804 affect iOS and iPadOS?

CVE-2019-8804 affects iOS versions up to and exclusive of 13.2 and iPadOS versions up to and exclusive of 13.2.

Q: How can I fix CVE-2019-8804?

You can fix CVE-2019-8804 by updating your device to iOS 13.2 or iPadOS 13.2.

Published Oct 28, 2019

Updated

Setup Assistant. An inconsistency in Wi-Fi network configuration settings was addressed.

Other sources

An inconsistency in Wi-Fi network configuration settings was addressed. This issue is fixed in iOS 13.2 and iPadOS 13.2. An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup.

Credit

Christy Philip Mathew(Zimperium Inc)

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<13.2

13.2

Apple iOS, iPadOS, and macOS<13.2

13.2

Apple iOS, iPadOS, and macOS<=13.2

iPhone OS<13.2

Event History

Dec 18, 2019

CVE Published

via MITRE·05:33 PM

Data Sourced

via MITRE·05:33 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT210721

Frequently Asked Questions

What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2019-8804.

What is the severity level of CVE-2019-8804?

The severity level of CVE-2019-8804 is medium.

How does CVE-2019-8804 affect iOS and iPadOS?

CVE-2019-8804 affects iOS versions up to and exclusive of 13.2 and iPadOS versions up to and exclusive of 13.2.

What is the impact of CVE-2019-8804?

An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup.

How can I fix CVE-2019-8804?