Lucene search
K

101 matches found

OSV
OSV
added 2020/12/08 9:15 p.m.3 views

CVE-2020-10017

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted audio file may lead to arbitrary code execution...

7.8CVSS7AI score0.01408EPSS
Exploits0References7
NVD
NVD
added 2020/12/08 9:15 p.m.22 views

CVE-2020-10017

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted audio file may lead to arbitrary code execution...

7.8CVSS7.3AI score0.01408EPSS
Exploits0References7
Prion
Prion
added 2020/12/08 9:15 p.m.27 views

Memory corruption

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A malicious application may be able to execute arbitrary code with system privileges...

9.3CVSS7.9AI score0.01273EPSS
Exploits0References3Affected Software4
Prion
Prion
added 2020/12/08 9:15 p.m.88 views

Memory corruption

A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS...

7.1CVSS5.4AI score0.1652EPSS
Exploits2References10Affected Software4
Prion
Prion
added 2020/12/08 9:15 p.m.22 views

Code injection

An issue existed in the handling of incoming calls. The issue was addressed with additional state checks. This issue is fixed in iOS 14.2 and iPadOS 14.2. A user may answer two calls simultaneously without indication they have answered a second call...

1.9CVSS5.1AI score0.00268EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2020/12/08 9:15 p.m.19 views

Authentication flaw

An authentication issue was addressed with improved state management. This issue is fixed in iOS 14.2 and iPadOS 14.2. A person with physical access to an iOS device may be able to access stored passwords without authentication...

2.1CVSS3.8AI score0.00316EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2020/12/08 9:15 p.m.20 views

Design/Logic Flaw

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.2 and iPadOS 14.2. Processing maliciously crafted web content may lead to arbitrary code execution...

9.3CVSS8AI score0.0112EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2020/12/08 8:17 p.m.41 views

CVE-2020-27950

A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS...

5.5AI score0.1652EPSS
Exploits2References10
OSV
OSV
added 2020/12/08 8:15 p.m.3 views

CVE-2020-9974

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A malicious application may be able to determine kernel memory layout...

5.5CVSS6.7AI score0.01198EPSS
Exploits0References7
NVD
NVD
added 2020/12/08 8:15 p.m.18 views

CVE-2020-10010

A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to elevate their privileges...

7.8CVSS6.4AI score0.00445EPSS
Exploits0References7
NVD
NVD
added 2020/12/08 8:15 p.m.13 views

CVE-2020-10004

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution...

7.8CVSS7.2AI score0.0137EPSS
Exploits0References6
NVD
NVD
added 2020/12/08 8:15 p.m.22 views

CVE-2020-10002

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Windows. A local user may be able to read arbitrary files...

5.5CVSS4.5AI score0.00418EPSS
Exploits0References9
OSV
OSV
added 2020/12/08 8:15 p.m.3 views

CVE-2020-10002

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Windows. A local user may be able to read arbitrary files...

5.5CVSS7.2AI score0.00418EPSS
Exploits0References9
Prion
Prion
added 2020/12/08 8:15 p.m.19 views

Memory corruption

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A malicious application may be able to determine kernel memory layout...

4.3CVSS5.2AI score0.01198EPSS
Exploits0References7Affected Software5
Prion
Prion
added 2020/12/08 8:15 p.m.17 views

Path traversal

An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to elevate their privileges...

4.6CVSS6.6AI score0.0039EPSS
Exploits0References5Affected Software5
Prion
Prion
added 2020/12/08 8:15 p.m.15 views

Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 14.2 and iPadOS 14.2, macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted USD file may lead to unexpected application terminati...

6.8CVSS7.7AI score0.01161EPSS
Exploits0References5Affected Software4
Prion
Prion
added 2020/12/08 8:15 p.m.19 views

Memory corruption

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. An application may be able to execute arbitrary code with kernel privileges...

9.3CVSS7.7AI score0.0162EPSS
Exploits0References7Affected Software6
Prion
Prion
added 2020/12/08 8:15 p.m.14 views

Code injection

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution...

6.8CVSS7.7AI score0.0137EPSS
Exploits0References6Affected Software4
Cvelist
Cvelist
added 2020/12/08 8:12 p.m.28 views

CVE-2020-27917

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Windows. Processing maliciously crafted web content may lead to code execution...

7.8AI score0.01733EPSS
Exploits0References7
Cvelist
Cvelist
added 2020/12/08 8:12 p.m.28 views

CVE-2020-27926

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.2 and iPadOS 14.2. Processing maliciously crafted web content may lead to arbitrary code execution...

8.2AI score0.0112EPSS
Exploits0References3
Rows per page
Query Builder