Sign-up

ID

VAR-201912-0570


CVE

CVE-2019-8632


TITLE

Texture Buffer error vulnerability

Trust: 1.4

sources: JVNDB: JVNDB-2019-013373 // CNNVD: CNNVD-201905-245

DESCRIPTION

Some analytics data was sent using HTTP rather than HTTPS. This was addressed by no longer sending this analytics data. This issue is fixed in Texture 5.11.10 for iOS, Texture 4.22.0.4 for Android. An attacker in a privileged network position may be able to intercept analytics data. Apple Texture is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Texture is a magazine management app. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. Texture Canada Android & iOS Applications - Unencrypted Third Party Analytics (CVE-2019-8632) -- https://www.info-sec.ca/advisories/Texture.html Overview "Texture: Unlimited access to over 100 of the world's best magazines on your computer, smartphone or tablet." (https://play.google.com/store/apps/details?id=com.nim.rogers) (https://itunes.apple.com/ca/app/texture-canada/id649174756) Issue The Texture Canada Android & iOS applications (Android version 4.21.0.1, iOS version 5.11.6 and below) sends potentially sensitive information such as number of app launches, device model, Android or iOS version and screen resolution, unencrypted to a third party site (ScorecardResearch). Impact An attacker who can monitor network traffic could capture potentially sensitive information about the user's device without their knowledge. Timeline July 10, 2018 - Attempted to notify Texture of the issue via security@texture.ca July 10, 2018 - Attempted to notify Texture of the issue via support@texture.ca July 12, 2018 - Provided the details of the issue to Apple via product-security@apple.com May 9, 2019 - Published an advisory to document the issue Solution Upgrade to Android version 4.22.0.4 or iOS version 5.11.10 (U.S. versions are also affected but have not been tested) https://support.apple.com/en-us/HT210110 https://support.apple.com/en-us/HT210111 https://support.apple.com/en-us/HT201222 CVE-ID: CVE-2019-8632

Trust: 2.07

sources: NVD: CVE-2019-8632 // JVNDB: JVNDB-2019-013373 // BID: 108304 // VULHUB: VHN-160067 // PACKETSTORM: 152783

AFFECTED PRODUCTS

vendor:applemodel:texturescope:ltversion:5.11.10

Trust: 1.0

vendor:applemodel:texturescope:ltversion:4.22.0.4

Trust: 1.0

vendor:applemodel:texturescope:ltversion:for android 4.22.0.4 (android 4.1 or later )

Trust: 0.8

vendor:applemodel:texturescope:ltversion:for ios 5.11.10 (ios 9.0 or later )

Trust: 0.8

vendor:applemodel:texture for iosscope:eqversion:0

Trust: 0.3

vendor:applemodel:texture for androidscope:eqversion:0

Trust: 0.3

vendor:applemodel:texture for iosscope:neversion:5.11.10

Trust: 0.3

vendor:applemodel:texture for androidscope:neversion:4.22.0.4

Trust: 0.3

sources: BID: 108304 // JVNDB: JVNDB-2019-013373 // NVD: CVE-2019-8632

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-8632
value: MEDIUM

Trust: 1.0

NVD: CVE-2019-8632
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201905-245
value: MEDIUM

Trust: 0.6

VULHUB: VHN-160067
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-8632
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-160067
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-8632
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2019-8632
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-160067 // JVNDB: JVNDB-2019-013373 // CNNVD: CNNVD-201905-245 // NVD: CVE-2019-8632

PROBLEMTYPE DATA

problemtype:CWE-319

Trust: 1.1

problemtype:CWE-119

Trust: 0.8

sources: VULHUB: VHN-160067 // JVNDB: JVNDB-2019-013373 // NVD: CVE-2019-8632

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201905-245

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201905-245

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-013373

PATCH
title:HT210110url:https://support.apple.com/en-us/HT210110
Trust: 0.8
title:HT210111url:https://support.apple.com/en-us/HT210111
Trust: 0.8
title:HT210110url:https://support.apple.com/ja-jp/HT210110
Trust: 0.8
title:HT210111url:https://support.apple.com/ja-jp/HT210111
Trust: 0.8
title:Texture Repair measures for information disclosure vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=92437
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2019-013373 // 
            
            
            
            CNNVD: CNNVD-201905-245

EXTERNAL IDS
db:NVDid:CVE-2019-8632
Trust: 2.9
db:PACKETSTORMid:152783
Trust: 0.8
db:JVNDBid:JVNDB-2019-013373
Trust: 0.8
db:CNNVDid:CNNVD-201905-245
Trust: 0.7
db:BIDid:108304
Trust: 0.3
db:VULHUBid:VHN-160067
Trust: 0.1
sources:
            
            
            VULHUB: VHN-160067 // 
            
            
            
            BID: 108304 // 
            
            
            
            JVNDB: JVNDB-2019-013373 // 
            
            
            
            PACKETSTORM: 152783 // 
            
            
            
            CNNVD: CNNVD-201905-245 // 
            
            
            
            NVD: CVE-2019-8632

REFERENCES
url:https://www.info-sec.ca/advisories/texture.html
Trust: 1.8
url:https://support.apple.com/ht210110
Trust: 1.7
url:https://support.apple.com/ht210111
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2019-8632
Trust: 1.5
url:https://support.apple.com/en-us/ht210110
Trust: 1.0
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-8632
Trust: 0.8
url:https://packetstormsecurity.com/files/152783/texture-canada-unencrypted-third-party-analytics.html
Trust: 0.6
url:https://support.apple.com/en-us/ht210111
Trust: 0.4
url:https://www.apple.com/
Trust: 0.3
url:https://itunes.apple.com/ca/app/texture-canada/id649174756)
Trust: 0.1
url:https://play.google.com/store/apps/details?id=com.nim.rogers)
Trust: 0.1
url:https://support.apple.com/en-us/ht201222
Trust: 0.1
sources:
            
            
            VULHUB: VHN-160067 // 
            
            
            
            BID: 108304 // 
            
            
            
            JVNDB: JVNDB-2019-013373 // 
            
            
            
            PACKETSTORM: 152783 // 
            
            
            
            CNNVD: CNNVD-201905-245 // 
            
            
            
            NVD: CVE-2019-8632

CREDITS
David Coomber
Trust: 0.7
sources:
            
            
            PACKETSTORM: 152783 // 
            
            
            
            CNNVD: CNNVD-201905-245

SOURCES
db:VULHUBid:VHN-160067
db:BIDid:108304
db:JVNDBid:JVNDB-2019-013373
db:PACKETSTORMid:152783
db:CNNVDid:CNNVD-201905-245
db:NVDid:CVE-2019-8632

LAST UPDATE DATE
2024-11-23T21:59:34+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-160067date:2020-08-24T00:00:00
db:BIDid:108304date:2019-04-11T00:00:00
db:JVNDBid:JVNDB-2019-013373date:2019-12-27T00:00:00
db:CNNVDid:CNNVD-201905-245date:2022-02-25T00:00:00
db:NVDid:CVE-2019-8632date:2024-11-21T04:50:12.317

SOURCES RELEASE DATE
db:VULHUBid:VHN-160067date:2019-12-18T00:00:00
db:BIDid:108304date:2019-04-11T00:00:00
db:JVNDBid:JVNDB-2019-013373date:2019-12-27T00:00:00
db:PACKETSTORMid:152783date:2019-05-09T18:51:22
db:CNNVDid:CNNVD-201905-245date:2019-05-09T00:00:00
db:NVDid:CVE-2019-8632date:2019-12-18T18:15:30.567