CVE-2019-8837: Critical severity macos catalina vulnerability

Q: What is CVE-2019-8837?

CVE-2019-8837 is a vulnerability in Apple operating systems macOS Catalina, Mojave, and High Sierra.

Q: How does CVE-2019-8837 affect macOS Catalina?

CVE-2019-8837 affects macOS Catalina version 10.15.2 and prior, but it has been fixed in macOS Catalina version 10.15.3 and later.

Q: How does CVE-2019-8837 affect Mojave?

CVE-2019-8837 affects Mojave, but Apple has not specified the exact versions impacted.

Q: How does CVE-2019-8837 affect High Sierra?

CVE-2019-8837 affects High Sierra, but Apple has not specified the exact versions impacted.

Q: How can I fix CVE-2019-8837?

To fix CVE-2019-8837, users should update to the latest version of macOS Catalina, Mojave, or High Sierra.

Published Dec 10, 2019

Updated

ATS. A logic issue was addressed with improved restrictions.

Other sources

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra. A malicious application may be able to access restricted files.

Credit

Csaba Fitzl@@theevilbit

Affected Software

4 affected componentsFixes available

apple macOS Catalina<10.15.2

10.15.2

apple Mojave

apple High Sierra

Apple iOS and macOS<10.15.2

Event History

Oct 27, 2020

CVE Published

via MITRE·07:54 PM

Data Sourced

via MITRE·07:54 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT210788

Frequently Asked Questions

What is CVE-2019-8837?

CVE-2019-8837 is a vulnerability in Apple operating systems macOS Catalina, Mojave, and High Sierra.

How does CVE-2019-8837 affect macOS Catalina?

CVE-2019-8837 affects macOS Catalina version 10.15.2 and prior, but it has been fixed in macOS Catalina version 10.15.3 and later.

How does CVE-2019-8837 affect Mojave?

CVE-2019-8837 affects Mojave, but Apple has not specified the exact versions impacted.

How does CVE-2019-8837 affect High Sierra?