CVE-2020-9794

Published: Jun 9, 2020Modified: Nov 21, 2024

8.1

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

Exploitability: 2.8 / Impact: 5.2

Source: NVD

Description

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. A malicious application may cause a denial of service or potentially disclose memory contents.

Affected (8)

Products: Apple: Icloud, Ipados, Iphone Os, Itunes, Mac Os X, Tvos, Watchos

7 products

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Apple Icloud	Before 7.19
Apple Icloud	From 11.0 to 11.2
Apple Ipados	Before 13.5
Apple Iphone Os	Before 13.5
Apple Itunes	Before 12.10.7
Apple Mac Os X	Before 10.15.5
Apple Tvos	Before 13.4.5
Apple Watchos	Before 6.2.5

Related CWEs

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (16)

https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E

Source: product-security@apple.com

https://support.apple.com/HT211168

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/HT211170

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/HT211171

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/HT211175

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/HT211178

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/HT211179

Source: product-security@apple.com

Release NotesVendor Advisory

https://support.apple.com/HT211181

Source: product-security@apple.com

Release NotesVendor Advisory

https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/HT211168

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/HT211170

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/HT211171

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/HT211175

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/HT211178

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/HT211179

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://support.apple.com/HT211181

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

Timeline

No history available yet.