Lucene search

CVE-2020-9901

🗓️ 22 Oct 2020 19:14:15Reported by appleType

cve🔗 web.nvd.nist.gov📰️ 8 Media mentions👁 55 Views

An issue with symlink path validation logic allows local privilege elevation

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Cvelist	CVE-2020-9901	22 Oct 202018:03	–	cvelist
NVD	CVE-2020-9901	22 Oct 202019:15	–	nvd
Prion	Path traversal	22 Oct 202019:15	–	prion
Apple	About the security content of tvOS 13.4.8 - Apple Support	15 Dec 202005:58	–	apple
Apple	About the security content of tvOS 13.4.8	15 Jul 202000:00	–	apple
Apple	About the security content of iOS 13.6 and iPadOS 13.6 - Apple Support	15 Dec 202005:18	–	apple
Apple	About the security content of iOS 13.6 and iPadOS 13.6	15 Jul 202000:00	–	apple
Apple	About the security content of macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra - Apple Support	15 Dec 202006:08	–	apple
Apple	About the security content of macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra	15 Jul 202000:00	–	apple
Tenable Nessus	macOS 10.15.x < 10.15.6 / 10.14.x < 10.14.6 Security Update 2020-004 / 10.13.x < 10.13.6 Security Update 2020-004	1 Oct 202000:00	–	nessus

Nvd

Vulners

Node

apple ipadosRange<13.6

apple iphone_osRange<13.6

apple mac_os_xRange<10.15.6

apple tvosRange<13.4.8

[
  {
    "product": "iOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "iOS 13.6 and iPadOS 13.6",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "macOS Catalina 10.15.6",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "tvOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "tvOS 13.4.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.apple.com/kb/HT211288
support	www.support.apple.com/kb/HT211289
support	www.support.apple.com/kb/HT211290

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Oct 2020 19:15Current

7High risk

Vulners AI Score7

CVSS24.6

CVSS37.8

EPSS0.00147

CWE-59