Login Sign Up

CVE-2019-8547

9.8 CRITICAL

📋 TL;DR

CVE-2019-8547 is an out-of-bounds read vulnerability in Apple operating systems that allows remote attackers to leak kernel memory. This could expose sensitive system information. Affected users include those running unpatched macOS, iOS, and watchOS versions.

💻 Affected Systems

Products:
  • macOS
  • iOS
  • watchOS
Versions: Versions prior to macOS Mojave 10.14.5, iOS 12.2, watchOS 5.2, and related security updates
Operating Systems: macOS, iOS, watchOS
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations of affected versions are vulnerable. No special configuration required for exploitation.

📦 What is this software?

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Mac Os X by Apple

View all CVEs affecting Mac Os X →

Mac Os X by Apple

View all CVEs affecting Mac Os X →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote attacker gains kernel memory access, potentially leading to information disclosure of sensitive system data or facilitating further exploitation.

🟠

Likely Case

Information disclosure of kernel memory contents, which could aid attackers in developing more sophisticated exploits.

🟢

If Mitigated

Limited impact with proper network segmentation and up-to-date systems, though memory leaks could still occur.

🌐 Internet-Facing: HIGH - Remote attackers can exploit this without authentication to leak memory.
🏢 Internal Only: MEDIUM - Internal attackers could exploit this, but external attack surface is more concerning.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Remote exploitation is possible without authentication, but specific exploit details are not publicly documented.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: macOS Mojave 10.14.5, iOS 12.2, watchOS 5.2, and corresponding security updates for older versions

Vendor Advisory: https://support.apple.com/en-us/HT209599

Restart Required: Yes

Instructions:

1. Open System Preferences > Software Update on macOS. 2. Install available updates. 3. Restart the system when prompted. For iOS/watchOS: Settings > General > Software Update.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict network access to affected systems to reduce attack surface

🧯 If You Can't Patch

  • Isolate affected systems from untrusted networks
  • Implement strict network access controls and monitor for unusual memory access patterns

🔍 How to Verify

Check if Vulnerable:

Check system version against affected versions: macOS < 10.14.5, iOS < 12.2, watchOS < 5.2

Check Version:

macOS: sw_vers -productVersion, iOS: Settings > General > About > Version, watchOS: Watch app > General > About > Version

Verify Fix Applied:

Verify system version is at or above patched versions: macOS ≥ 10.14.5, iOS ≥ 12.2, watchOS ≥ 5.2

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • Unexpected system crashes
  • Memory access violation logs

Network Indicators:

  • Unusual network connections to system services
  • Attempts to access kernel memory regions

SIEM Query:

Search for kernel panic events or memory access violations in system logs

📊 Metadata

CVE ID: CVE-2019-8547
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-125
Published: October 27, 2020
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2019-8547, you might also want to check these:

CVE-2021-41556 10.0

CVE-2021-41556 is a critical out-of-bounds read vulnerability in Squirrel scripting language that al...

Same vulnerability type (CWE-125)
CVE-2024-22004 10.0

This vulnerability allows attackers with privileged access on Linux non-secure operating systems to ...

Same vulnerability type (CWE-125)
CVE-2021-21777 10.0

CVE-2021-21777 is a critical out-of-bounds read vulnerability in the Ethernet/IP UDP handler of OpEN...

Same vulnerability type (CWE-125)