Vulnerability: Unencrypted PDF Content Exfiltration via Links

CVE-2019-8772 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt. This issue is fixed in macOS Catalina 10.15. An attacker may be able to exfiltrate the contents of an encrypted PDF.

Learn more about our Cis Benchmark Audit For Apple Macos.