CVE-2019-8704
MEDIUM WAF: Low
CVSS 5.5
Published: 2019-12-18
CWE-287
An authentication issue was addressed with improved state management. This issue is fixed in tvOS 13. A local user may be able to leak sensitive user information.
WAF Coverage Analysis
Improper Authentication
Low WAF Coverage
OWASP: A07:2021 Identification and Authentication Failures
Affected Software
| Vendor | Product | Version |
|---|---|---|
| apple | iphone_os | up to 13.0 |
| apple | tvos | up to 13 |
References
- support.apple.com (Vendor Advisory)
- support.apple.com (Vendor Advisory)