CVE-2020-27952

🗓️ 02 Apr 2021 18:17:15Reported by appleType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 53 Views

An out-of-bounds write fixed through improved input validation

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Zero Day Initiative	Apple macOS libFontParser TTF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability	8 Dec 202000:00	–	zdi
NVD	CVE-2020-27952	2 Apr 202118:15	–	nvd
Prion	Input validation	2 Apr 202118:15	–	prion
Cvelist	CVE-2020-27952	2 Apr 202117:39	–	cvelist
Tenable Nessus	macOS 10.14.x < 10.14.6 Security Update 2020-007 / 10.15.x < 10.15.7 Security Update 2020-001 / macOS 11.x < 11.1 (HT212011)	18 Dec 202000:00	–	nessus
Apple	About the security content of macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave	14 Dec 202000:00	–	apple
Apple	About the security content of macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave - Apple Support	1 Feb 202106:39	–	apple
Apple	About the security content of macOS Big Sur 11.0.1 - Apple Support	18 Feb 202106:14	–	apple
Apple	About the security content of macOS Big Sur 11.0.1	12 Nov 202000:00	–	apple
OpenVAS	Apple Mac OS X Security Update (HT211931)	22 Sep 202200:00	–	openvas

Nvd

Vulners

Node

apple mac_os_xRange10.14–10.14.6

apple mac_os_xRange10.15–10.15.7

apple mac_os_xMatch10.14.6-

apple mac_os_xMatch10.14.6security_update_2019-001

apple mac_os_xMatch10.14.6security_update_2019-002

apple mac_os_xMatch10.14.6security_update_2019-006

apple mac_os_xMatch10.14.6security_update_2019-007

apple mac_os_xMatch10.14.6security_update_2020-001

apple mac_os_xMatch10.14.6security_update_2020-002

apple mac_os_xMatch10.14.6security_update_2020-003

apple mac_os_xMatch10.14.6security_update_2020-004

apple mac_os_xMatch10.14.6security_update_2020-005

apple mac_os_xMatch10.14.6security_update_2020-006

apple mac_os_xMatch10.14.6supplemental_update

apple mac_os_xMatch10.14.6supplemental_update_2

apple mac_os_xMatch10.15.7-

apple mac_os_xMatch10.15.7supplemental_update

apple macosRange11.0–11.1.0

[
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "11.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "11.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.apple.com/en-us/HT211931
support	www.support.apple.com/en-us/HT212011

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Apr 2021 18:15Current

7.5High risk

Vulners AI Score7.5

CVSS26.8

CVSS37.8

EPSS0.00491

CWE-787