CVE-2020-9899

2020-10-2217:59:53

apple

www.cve.org

memory corruption

input validation

macos catalina

arbitrary code

kernel privileges

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

31.4%

JSON

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.6. An application may be able to execute arbitrary code with kernel privileges.

CNA Affected

[
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "macOS Catalina 10.15.6",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

support.apple.com/kb/HT211289