CVE Database · CVE-2019-7286
CVSS v3.1
7.8
EPSS
15.71%
Published
Dec 18, 2019
Modified
Oct 23, 2025
CISA Known Exploited Vulnerability
Added: 2022-05-23 · Due: 2022-06-13
Apply updates per vendor instructions.
Public PoC / Exploit (2)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HWeaknesses (CWE)
Affected Products (2)
References (9)