3 matches found
CVE-2020-3835
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be able to access restricted files...
About the security content of macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...
CVE-2020-3835
CVE-2020-3835: A validation issue existed in the handling of symlinks within the macOS Crash Reporter component. The issue could allow a malicious local application to access restricted files. Apple fixed it in macOS Catalina 10.15.3 (Security Update 2020-001).