8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
79.0%
01/28/2020
Warning
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions.
Apple iCloud earlier than 7.17
Apple iCloud earlier than 10.9.2
Update to the latest version
Download iCloud
ACE
CVE-2020-38689.3Critical
CVE-2020-38466.8High
CVE-2020-38266.8High
CVE-2020-38656.8High
CVE-2020-38256.8High
CVE-2020-38674.3Warning
CVE-2020-38624.3Warning
CVE-2019-88274.3Warning
CVE-2020-38647.2High
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8827
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3825
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3826
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3846
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3862
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3864
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3865
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3867
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3868
statistics.securelist.com/vulnerability-scan/month
support.apple.com/en-us/HT204283
support.apple.com/kb/HT210947
support.apple.com/kb/HT210948
threats.kaspersky.com/en/product/Apple-iCloud/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
79.0%