Published: 08/12/2020 Updated: 10/03/2021

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

An integer overflow was addressed through improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Windows. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple icloud
apple itunes
apple ipados
apple iphone os
apple macos
apple tvos
apple watchos

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-11-05-1 iOS 142 and iPadOS 142 iOS 142 and iPadOS 142 are now available and address the following issues Information about the security content is also available at supportapplecom/HT211929 Audio Available for: iPhone 6s and later, iPod touch 7th generation, iPad Air 2 ...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-12-14-3 macOS Big Sur 111, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave macOS Big Sur 111, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave addresses the following issues Information about the security content is also available at supp ...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 1101 macOS Big Sur 1101 addresses the following issues Information about the security content is also available at supportapplecom/HT211931 AMD Available for: Mac Pro (2013 and later), MacBook Air ( ...

CWE-190 https://support.apple.com/en-us/HT211929 https://support.apple.com/en-us/HT211928 https://support.apple.com/en-us/HT211935 https://support.apple.com/en-us/HT211931 https://support.apple.com/en-us/HT211933 https://support.apple.com/en-us/HT211930 https://support.apple.com/kb/HT212011 http://seclists.org/fulldisclosure/2020/Dec/32 http://seclists.org/fulldisclosure/2020/Dec/26 https://nvd.nist.gov http://seclists.org/fulldisclosure/2020/Nov/6

CVE-2020-27911

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect