Published: 22/10/2020 Updated: 09/01/2023

CVSS v2 Base Score: 9.4 | Impact Score: 9.2 | Exploitability Score: 10

CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9

VMScore: 837

Vector: AV:N/AC:L/Au:N/C:N/I:C/A:C

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, watchOS 6.2.8. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os
apple watchos
apple ipados
apple mac os x
apple mac os x 10.14.6
apple mac os x 10.13.6

How a nightmare wormable, wireless, automatic hijack-a-nearby-iPhone security flaw was found and fixed

The Register • Thomas Claburn in San Francisco • 03 Dec 2020

You're probably all patched by now, which is just as well Five bag $300,000 in bug bounties after finding 55 security holes in Apple's web apps, IT infrastructure

A Google security guru has published details of a critical hole in Apple's iOS that can be exploited by miscreants to hijack strangers' iPhones over the air without any user interaction. All a hacker would need to do is transmit carefully crafted, malicious AWDL packets to a victim's handheld to gain control of it. AWDL is Apple Wireless Direct Link, Cupertino's proprietary mesh networking protocol that is based on Wi-Fi. You don't need to be on the same conventional Wi-Fi network as your victim...

CVE-2020-9906

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect