|
1581
|
5.5
4.3
|
MEDIUM
Local
|
An issue was discovered in OpenEXR before 2.4.1. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2020-11759
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.6
|
2024-11-21 13:58
2020-04-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1582
|
5.5
4.3
|
MEDIUM
Local
|
An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-11758
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.6
|
2024-11-21 13:58
2020-04-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1583
|
7.8
9.3
|
HIGH
Local
|
Multiple memory corruption issues were addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious applicati…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9785
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1584
|
8.8
6.8
|
HIGH
Network
|
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, i…
|
CWE-416
Use After Free
|
CVE-2020-9783
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1585
|
5.3
5.0
|
MEDIUM
Network
|
The issue was addressed by clearing website permission prompts after navigation. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user may grant website permissions to a site they didn't intend to.
|
CWE-281
Improper Preservation of Permissions
|
CVE-2020-9781
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1586
|
3.3
2.1
|
LOW
Local
|
The issue was resolved by clearing application previews when content is deleted. This issue is fixed in iOS 13.4 and iPadOS 13.4. A local user may be able to view deleted content in the app switcher.
|
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
|
CVE-2020-9780
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1587
|
5.3
5.0
|
MEDIUM
Network
|
An issue existed in the selection of video file by Mail. The issue was fixed by selecting the latest version of a video. This issue is fixed in iOS 13.4 and iPadOS 13.4. Cropped videos may not be sha…
|
NVD-CWE-noinfo
|
CVE-2020-9777
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1588
|
5.3
5.0
|
MEDIUM
Network
|
An issue existed in the handling of tabs displaying picture in picture video. The issue was corrected with improved state handling. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user's private b…
|
CWE-665
Improper Initialization
|
CVE-2020-9775
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1589
|
3.3
4.3
|
LOW
Local
|
The issue was addressed with improved handling of icon caches. This issue is fixed in iOS 14.0 and iPadOS 14.0. A malicious application may be able to identify what other applications a user has inst…
|
NVD-CWE-noinfo
|
CVE-2020-9773
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
14.0
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1590
|
6.5
4.0
|
MEDIUM
Network
|
A logic issue was addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4. An attacker in a privileged network position may be able to intercept Bluetooth traffic.
|
NVD-CWE-noinfo
|
CVE-2020-9770
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
13.4
|
2024-11-21 14:41
2020-04-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|