Lucene search
AppleCVELIST:CVE-2020-3880HistoryOct 27, 2020 - 8:42 p.m.
CVE-2020-3880
2020-10-2720:42:57
apple
www.cve.org
7
cve-2020-3880
out-of-bounds read
input validation
arbitrary code execution
apple os
security update
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. Processing a maliciously crafted image may lead to arbitrary code execution.
CNA Affected
[
{
"product": "iOS and iPadOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "13.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "10.15",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "13.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "6.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Input validation
2020-10-27 21:15:00
nvd
nvd
CVE-2020-3880
2020-10-27 21:15:15
cve
cve
CVE-2020-3880
2020-10-27 21:15:15
googleprojectzero
googleprojectzero
Fuzzing ImageIO
2020-04-28 00:00:00
apple
apple
About the security content of watchOS 6.1.2 - Apple Support
2020-06-22 04:31:02
About the security content of watchOS 6.1.2
2020-01-28 00:00:00
About the security content of tvOS 13.3.1 - Apple Support
2020-06-22 04:31:02