CVE-2020-27951

Published: Apr 2, 2021Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

This issue was addressed with improved checks. This issue is fixed in watchOS 6.3, iOS 12.5, iOS 14.3 and iPadOS 14.3, watchOS 7.2. Unauthorized code execution may lead to an authentication policy violation.

Affected (5)

Products: Apple: Ipados, Iphone Os, Watchos

3 products

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 14.3
Apple Iphone Os	Before 12.5
Apple Iphone Os	From 14.0 to 14.3
Apple Watchos	From 6.0 to 6.3
Apple Watchos	From 7.0 to 7.2

References (8)

https://support.apple.com/en-us/HT212003

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/en-us/HT212004

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/en-us/HT212006

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/en-us/HT212009

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/en-us/HT212003

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://support.apple.com/en-us/HT212004

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://support.apple.com/en-us/HT212006

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://support.apple.com/en-us/HT212009

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.