What is CVE-2019-6225?

CVE-2019-6225 is a vulnerability in Apple Ios. Published 2019-03-05.

Is CVE-2019-6225 known to be exploited?

20 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apple Ios

CVE-2019-6225

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges.

EPSS: 0.645 (98.5th percentile) — read the EPSS interpretation.

Affected products

Apple Ios — versions unspecified
Apple Macos — versions unspecified
Apple Tvos — versions unspecified

Public proof-of-concept exploits

fatgrass/OsirisJailbreak12
TrungNguyen1909/CVE-2019-6225-macOS
ox1111/jailbreak-iOS12
ARPSyndicate/cvemon
HeyItskPan1c/Osiris12BykPan
OpenJailbreak/voucher_
PsychoTea/machswap
PsychoTea/machswap2
S0rryMyBad/poc.voucherSwap
developer3000S/PoC-in-GitHub

References

106695 (vdb-entry, x_refsource_BID)
support.apple.com/HT209446 (x_refsource_CONFIRM)
46248 (exploit, x_refsource_EXPLOIT-DB)
support.apple.com/HT209443 (x_refsource_CONFIRM)
support.apple.com/HT209447 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2019-6225?: CVE-2019-6225 is a vulnerability in Apple Ios. Published 2019-03-05.
Is CVE-2019-6225 known to be exploited?: 20 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.