NVD - CVE-2019-8677

Vulnerability Change Records for CVE-2019-8677

Change History

Initial Analysis by NIST 12/20/2019 1:23:54 PM

Action	Type	Old Value	New Value
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Added	CVSS V2		NIST (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Added	CWE		NIST CWE-119
Added	CPE Configuration		OR cpe:2.3:a:apple:icloud::::::windows:: versions up to (excluding) 7.13 cpe:2.3:a:apple:icloud::::::windows:: versions from (including) 10.0 up to (excluding) 10.6 cpe:2.3:a:apple:itunes::::::windows:: versions up to (excluding) 12.9.6 cpe:2.3:a:apple:safari::::::::* versions up to (excluding) 12.1.2 cpe:2.3:o:apple:iphone_os::::::::* versions up to (excluding) 12.4 cpe:2.3:o:apple:mac_os_x::::::::* versions up to (excluding) 10.14.6 cpe:2.3:o:apple:tvos::::::::* versions up to (excluding) 12.4
Changed	Reference Type	https://support.apple.com/HT210346 No Types Assigned	https://support.apple.com/HT210346 Vendor Advisory
Changed	Reference Type	https://support.apple.com/HT210348 No Types Assigned	https://support.apple.com/HT210348 Vendor Advisory
Changed	Reference Type	https://support.apple.com/HT210351 No Types Assigned	https://support.apple.com/HT210351 Vendor Advisory
Changed	Reference Type	https://support.apple.com/HT210355 No Types Assigned	https://support.apple.com/HT210355 Vendor Advisory
Changed	Reference Type	https://support.apple.com/HT210356 No Types Assigned	https://support.apple.com/HT210356 Vendor Advisory
Changed	Reference Type	https://support.apple.com/HT210357 No Types Assigned	https://support.apple.com/HT210357 Vendor Advisory
Changed	Reference Type	https://support.apple.com/HT210358 No Types Assigned	https://support.apple.com/HT210358 Vendor Advisory
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism