Lucene search
K

162 matches found

Debian CVE
Debian CVE
added 2020/10/16 4:40 p.m.26 views

CVE-2020-9894

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected applicati...

4.3CVSS6.4AI score0.02686EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2020/10/16 4:39 p.m.46 views

CVE-2020-9893

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected...

8.8CVSS9.2AI score0.02833EPSS
Exploits0
CVE
CVE
added 2020/10/16 4:37 p.m.76 views

CVE-2020-9888

CVE-2020-9888 affects Apple OS components handling audio on iOS/iPadOS, macOS, tvOS, and watchOS. The root cause is an out-of-bounds read vulnerability in audio processing, mitigated by improved bounds checking. Impact described as potential arbitrary code execution when processing a maliciously ...

7.8CVSS8AI score0.01203EPSS
Exploits0References4Affected Software5
CVE
CVE
added 2020/10/16 4:36 p.m.81 views

CVE-2020-9885

CVE-2020-9885 concerns iMessage tapbacks handling. The issue allowed a removed user from an iMessage group to rejoin the group, and Apple fixed it by adding verification. Affected platforms include iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, and watchOS 6.2.8. Remediation is to...

5.5CVSS6.1AI score0.00446EPSS
Exploits0References4Affected Software5
Cvelist
Cvelist
added 2020/10/16 4:36 p.m.26 views

CVE-2020-9885

An issue existed in the handling of iMessage tapbacks. The issue was resolved with additional verification. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. A user that is removed from an iMessage group could rejoin the group...

6.4AI score0.00446EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/10/16 4:33 p.m.16 views

CVE-2020-9878

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution...

8.3AI score0.01323EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/10/16 4:32 p.m.24 views

CVE-2020-9862

A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web...

8.1AI score0.01757EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2020/10/16 4:32 p.m.37 views

CVE-2020-9862

A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web...

7.8CVSS8.2AI score0.01757EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2020/10/16 12:0 a.m.71 views

CVE-2020-9934 - macOS Transparency, Consent, and Control (TCC) Framework bypass

An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6. A local user may be able to view sensitive user information. Recent assessments: busterb at August 03, 2020 10:42p...

5.5CVSS5.6AI score0.03208EPSS
In wildExploits1References3
Positive Technologies
Positive Technologies
added 2020/10/16 12:0 a.m.4 views

PT-2020-20839 · Apple · Macos Catalina +4

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 13.6 Apple iPadOS versions prior to 13.6 Apple macOS Catalina versions prior to 10.15.6 Apple tvOS versions prior to 13.4.8 Apple watchOS versions prior to 6.2.8 Description: An out-of-bounds write issue was...

7.8CVSS7.2AI score0.01757EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2020/10/16 12:0 a.m.27 views

CVE-2020-9907

A memory corruption issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8. An application may be able to execute arbitrary code with kernel privileges. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed...

9.3CVSS4.1AI score0.03899EPSS
In wildExploits0References3
Positive Technologies
Positive Technologies
added 2020/10/16 12:0 a.m.3 views

PT-2020-20829 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 13.6 iPadOS versions prior to 13.6 macOS Catalina versions prior to 10.15.6 tvOS versions prior to 13.4.8 watchOS versions prior to 6.2.8 Description: A buffer overflow issue was addressed with improved memory handling...

7.8CVSS7.4AI score0.01323EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/09/16 2:17 p.m.39 views

CVE-2020-9915

An access issue existed in Content Security Policy. This issue was addressed with improved access restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing...

4.3CVSS2.1AI score0.01444EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/09/16 2:16 p.m.26 views

CVE-2020-9862

A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web...

6.8CVSS2AI score0.01757EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/07/29 12:0 a.m.21 views

CVE-2020-9893

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected...

8.8CVSS7AI score0.02833EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/07/29 12:0 a.m.27 views

CVE-2020-9862

A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web...

7.8CVSS6.8AI score0.01757EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/07/29 12:0 a.m.27 views

CVE-2020-9915

An access issue existed in Content Security Policy. This issue was addressed with improved access restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing...

6.5CVSS6.8AI score0.01444EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/07/24 12:0 a.m.3 views

PT-2020-6679 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 13.6 iPadOS versions prior to 13.6 tvOS versions prior to 13.4.8 Description: The issue is related to a memory corruption problem in the AVEVideoEncoder component, which can lead to a buffer overflow. This can potentiall...

9.3CVSS7.8AI score0.03899EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2020/07/21 12:0 a.m.4 views

PT-2020-20878 · Apple · Itunes For Windows +7

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 13.6 Apple iPadOS versions prior to 13.6 Apple macOS Catalina versions prior to 10.15.6 Apple tvOS versions prior to 13.4.8 Apple watchOS versions prior to 6.2.8 Apple iTunes for Windows versions prior to 12.10.8...

7.8CVSS7.3AI score0.01324EPSS
Exploits0References9
CNVD
CNVD
added 2020/07/16 12:0 a.m.4 views

Apple Safari Login AutoFill Component Logic Flaw Vulnerability

Apple Safari is a web browser from Apple, Inc. and is the default browser that comes with the Mac OS X and iOS operating systems. A security vulnerability exists in the Safari Login AutoFill component in Apple Safari versions prior to 13.1.2, iOS versions prior to 13.6, and iPadOS versions prior ...

7.5CVSS6.5AI score0.00507EPSS
Exploits0References1
Rows per page
Query Builder