CVE-2019-8834
Published: Oct 27, 2020
Modified: Aug 4, 2024
Description
A configuration issue was addressed with additional restrictions. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, iOS 13.3 and iPadOS 13.3, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. An attacker in a privileged network position may be able to bypass HSTS for a limited number of specific top-level domains previously not in the HSTS preload list.
| Vendor | Product | Versions |
|---|---|---|
Apple | iOS and iPadOS | affected unspecified - < 13.3 |
Apple | macOS | affected unspecified - < 10.15 |
Apple | macOS | affected unspecified - < 6.1 |
Apple | macOS | affected unspecified - < 13.3 |
Apple | macOS | affected unspecified - < 12.10 |
Apple | macOS | affected unspecified - < 10.9 |
Apple | macOS | affected unspecified - < 7.16 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now