Lucene search
K

162 matches found

CVE
CVE
added 2020/10/22 6:4 p.m.77 views

CVE-2020-9902

CVE-2020-9902 is an out-of-bounds read vulnerability in Apple’s kernel component that could allow a malicious app to determine the kernel memory layout. The issue is fixed in iOS 13.6, iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, and watchOS 6.2.8. Connected Apple advisories cite kernel memo...

7.1CVSS5.5AI score0.00954EPSS
Exploits0References4Affected Software5
Cvelist
Cvelist
added 2020/10/22 6:4 p.m.18 views

CVE-2020-9904

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. An application may be able to execute arbitrary code with kernel privileges...

8.1AI score0.01322EPSS
Exploits0References4
CVE
CVE
added 2020/10/22 6:0 p.m.77 views

CVE-2020-9898

CVE-2020-9898 affects Apple platforms and is a sandbox bypass issue. According to Apple and Red Hat entries, the vulnerability could allow a sandboxed process to circumvent sandbox restrictions. The CVE is fixed in macOS Catalina 10.15.6 and iOS/iPadOS 13.6, with corresponding Apple advisories (H...

9.8CVSS7.7AI score0.01326EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2020/10/22 6:0 p.m.22 views

CVE-2020-9879

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may...

8.3AI score0.01241EPSS
Exploits0References7
Cvelist
Cvelist
added 2020/10/22 6:0 p.m.16 views

CVE-2020-9882

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, watchOS 6.2.8. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution...

8.4AI score0.01266EPSS
Exploits0References3
CVE
CVE
added 2020/10/22 5:59 p.m.89 views

CVE-2020-9880

CVE-2020-9880 describes a buffer overflow in Apple’s Model I/O handling of USD files. The root cause is an overflow that was addressed by improved bounds checking. Affected products include iOS/iPadOS, macOS Catalina, tvOS, and watchOS: specifically iOS 13.6 / iPadOS 13.6, macOS Catalina 10.15.6,...

7.8CVSS8.2AI score0.01309EPSS
Exploits0References4Affected Software5
Cvelist
Cvelist
added 2020/10/22 5:59 p.m.22 views

CVE-2020-9883

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may lead t...

8.4AI score0.05716EPSS
Exploits0References10
Cvelist
Cvelist
added 2020/10/22 5:59 p.m.23 views

CVE-2020-9873

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may lead to...

8.2AI score0.01279EPSS
Exploits0References7
Cvelist
Cvelist
added 2020/10/22 5:58 p.m.23 views

CVE-2020-9877

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may lead to...

8.2AI score0.01279EPSS
Exploits0References7
CVE
CVE
added 2020/10/22 5:58 p.m.94 views

CVE-2020-9872

CVE-2020-9872 is an out-of-bounds write in ImageIO that may permit arbitrary code execution when processing a maliciously crafted image. Affected products/versions and fixes are documented in Apple advisories: iOS 13.6 and iPadOS 13.6; macOS Catalina 10.15.6; tvOS 13.4.8; watchOS 6.2.8; iTunes 12...

7.8CVSS8.2AI score0.01279EPSS
Exploits0References7Affected Software7
Cvelist
Cvelist
added 2020/10/22 5:54 p.m.21 views

CVE-2020-9871

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may...

8.3AI score0.01273EPSS
Exploits0References7
CVE
CVE
added 2020/10/22 5:54 p.m.90 views

CVE-2020-9871

CVE-2020-9871: An out-of-bounds write in ImageIO (openEXR handling) may allow arbitrary code execution when processing a malicious image. Affected products include Apple OSes and related apps; Apple’s mitigations are in security updates. Remediation: patch in iOS 13.6/iPadOS 13.6, macOS Catalina ...

7.8CVSS8.2AI score0.01273EPSS
Exploits0References7Affected Software7
Cvelist
Cvelist
added 2020/10/22 5:54 p.m.17 views

CVE-2020-9863

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. An application may be able to execute arbitrary code with kernel privileges...

7.9AI score0.0131EPSS
Exploits0References4
NVD
NVD
added 2020/10/16 5:15 p.m.18 views

CVE-2020-9916

A URL Unicode encoding issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A malicious attacker may be able to conceal the...

5.3CVSS0.01361EPSS
Exploits0References7
NVD
NVD
added 2020/10/16 5:15 p.m.19 views

CVE-2020-9936

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may...

7.8CVSS0.01268EPSS
Exploits0References7
NVD
NVD
added 2020/10/16 5:15 p.m.18 views

CVE-2020-9915

An access issue existed in Content Security Policy. This issue was addressed with improved access restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing...

6.5CVSS0.01427EPSS
Exploits0References7
NVD
NVD
added 2020/10/16 5:15 p.m.17 views

CVE-2020-9923

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, watchOS 6.2.8. A malicious application may be able to execute arbitrary code with system privileges...

9.3CVSS0.01178EPSS
Exploits0References2
NVD
NVD
added 2020/10/16 5:15 p.m.25 views

CVE-2020-9917

This issue was addressed with improved checks. This issue is fixed in iOS 13.6 and iPadOS 13.6. A remote attacker may be able to cause a denial of service...

7.5CVSS0.01568EPSS
Exploits0References1
NVD
NVD
added 2020/10/16 5:15 p.m.23 views

CVE-2020-9931

A denial of service issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6. A remote attacker may cause an unexpected application termination...

7.5CVSS0.01568EPSS
Exploits0References1
OSV
OSV
added 2020/10/16 5:15 p.m.9 views

CVE-2020-9893

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected...

8.8CVSS9.2AI score
Exploits0References7
Rows per page
Query Builder