CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2020/10/16 5:15 p.m.•17 views

CVE-2020-9923

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, watchOS 6.2.8. A malicious application may be able to execute arbitrary code with system privileges...

9.3CVSS0.01178EPSS

NVD•added 2020/10/16 5:15 p.m.•19 views

CVE-2020-9931

A denial of service issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6. A remote attacker may cause an unexpected application termination...

7.5CVSS0.01568EPSS

Exploits0References1

NVD•added 2020/10/16 5:15 p.m.•18 views

CVE-2020-9936

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may...

7.8CVSS0.01268EPSS

NVD•added 2020/10/16 5:15 p.m.•24 views

CVE-2020-9917

This issue was addressed with improved checks. This issue is fixed in iOS 13.6 and iPadOS 13.6. A remote attacker may be able to cause a denial of service...

7.5CVSS0.01568EPSS

Exploits0References1

NVD•added 2020/10/16 5:15 p.m.•22 views

CVE-2020-9925

A logic issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing maliciously crafted web content may lead to universal...

6.1CVSS0.01121EPSS

NVD•added 2020/10/16 5:15 p.m.•24 views

CVE-2020-9946

This issue was addressed with improved checks. This issue is fixed in iOS 14.0 and iPadOS 14.0, watchOS 7.0. The screen lock may not engage after the specified time period...

6.8CVSS0.00303EPSS

Exploits0References4

NVD•added 2020/10/16 5:15 p.m.•32 views

CVE-2020-9952

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0, watchOS 7.0, Safari 14.0, iCloud for Windows 11.4, iCloud for Windows 7.21. Processing maliciously crafted web content may lead to a cross site scripting attack...

7.1CVSS0.01479EPSS

Exploits0References12

OSV•added 2020/10/16 5:15 p.m.•6 views

CVE-2020-9925

6.1CVSS8AI score

OSV•added 2020/10/16 5:15 p.m.•2 views

CVE-2020-9907

A memory corruption issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8. An application may be able to execute arbitrary code with kernel privileges...

7.8CVSS7.6AI score0.03738EPSS

OSV•added 2020/10/16 5:15 p.m.•2 views

CVE-2020-9911

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, Safari 13.1.2. An issue in Safari Reader mode may allow a remote attacker to bypass the Same Origin Policy...

7.5CVSS7.1AI score0.01443EPSS

NVD•added 2020/10/16 5:15 p.m.•16 views

CVE-2020-9895

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected...

9.8CVSS0.04138EPSS

NVD•added 2020/10/16 5:15 p.m.•14 views

CVE-2020-9909

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

5.9CVSS0.01721EPSS

NVD•added 2020/10/16 5:15 p.m.•19 views

CVE-2020-9914

An input validation issue existed in Bluetooth. This issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8. An attacker in a privileged network position may be able to perform denial of service attack using malformed Bluetooth packets...

7.5CVSS0.01221EPSS

NVD•added 2020/10/16 5:15 p.m.•15 views

CVE-2020-9890

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution...

7.8CVSS0.01183EPSS

Exploits0References4

NVD•added 2020/10/16 5:15 p.m.•16 views

CVE-2020-9903

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, Safari 13.1.2. A malicious attacker may cause Safari to suggest a password for the wrong domain...

7.5CVSS0.00501EPSS

NVD•added 2020/10/16 5:15 p.m.•18 views

CVE-2020-9907

9.3CVSS0.03738EPSS

NVD•added 2020/10/16 5:15 p.m.•23 views

CVE-2020-9910

Multiple issues were addressed with improved logic. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A malicious attacker with arbitrary read and write capability may be able t...

8.8CVSS0.02163EPSS

Exploits1References7

NVD•added 2020/10/16 5:15 p.m.•19 views

CVE-2020-9911

7.5CVSS0.01443EPSS

OSV•added 2020/10/16 5:15 p.m.•5 views

CVE-2020-9893

8.8CVSS9.2AI score