Published: 16/10/2020 Updated: 09/01/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted audio file may lead to arbitrary code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x
apple tvos
apple iphone os
apple watchos
apple ipados

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2020-07-15-2 macOS Catalina 10156, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra <! ...

This week of never-ending security updates continue. Now Apple emits dozens of fixes for iOS, macOS, etc

The Register • Shaun Nichols in San Francisco • 16 Jul 2020

Make sure your iThing installs these patches Get rich quick! Work from home! Earn $100,000 easy – just find a critical flaw in Apple's sign-in system

Apple has released a fresh batch of software security updates for its flagship devices. The July 15 security refresh from Cupertino includes fixes for bugs in iOS, macOS, tvOS, and WatchOS: basically every hardware product from the Cupertino giant. Given the massive patch overload this week, it's a good time to bury bad news. For iOS and iPadOS the 13.6 update includes fixes for 29 CVE-listed vulnerabilities, 10 involving arbitrary code execution. Four of those code execution flaws are exploited...

CVE-2020-9888

Vulnerability Summary

Vulnerability Trend

Mailing Lists

Recent Articles

References

Vulmon Search

About

Products

Connect