3 matches found
CVE-2020-9900
An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. A local attacker may be able to elevate their privileges...
CVE-2020-9900
CVE-2020-9900 involves a path validation issue in the symlink handling within Apple’s Crash Reporter pathway affecting multiple Apple OS variants (iOS/iPadOS, macOS, tvOS, watchOS). The root cause is improper path sanitization during symlink validation, enabling a local attacker to elevate privil...
About the security content of watchOS 6.2.8
About the security content of watchOS 6.2.8 This document describes the security content of watchOS 6.2.8. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...