|
208351
|
4.3 |
MEDIUM
Network
|
apple
|
safari
|
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 13.0.5. Visiting a malicious website may lead to address bar spoofing.
|
NVD-CWE-Other
|
CVE-2020-3833
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208352
|
7.0 |
HIGH
Local
|
apple
|
iphone_os
ipados
|
A race condition was addressed with improved locking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. An application may be able to execute arbitrary code with kernel privileges.
|
CWE-362
Race Condition
|
CVE-2020-3831
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208353
|
3.3 |
LOW
Local
|
apple
|
mac_os_x
|
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be ab…
|
CWE-59
Link Following
|
CVE-2020-3830
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208354
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
ipados
tvos
watchos
mac_os_x
|
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-3829
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208355
|
2.4 |
LOW
Physics
|
apple
|
iphone_os
ipados
|
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A person with physical…
|
NVD-CWE-noinfo
|
CVE-2020-3828
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208356
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. Viewing a maliciously crafted JPEG file may lead to arbitrary code execution.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-3827
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208357
|
7.8 |
HIGH
Local
|
apple
|
icloud
iphone_os
ipados
tvos
watchos
mac_os_x
itunes
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2, iTunes for Windows 12.10.4…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-3826
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208358
|
8.8 |
HIGH
Network
|
apple
|
icloud
iphone_os
ipados
tvos
itunes
safari
|
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-3825
|
2024-11-21 14:31 |
2020-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208359
|
9.8 |
CRITICAL
Network
|
tonnet
|
tat-77104g1_firmware
tat-70432n_firmware
tat-71416g1_firmware
tat-71832g1_firmware
tat-76104g3_firmware
tat-76108g3_firmware
tat-76116g3_firmware
tat-76132g3_firmware
|
DVR firmware in TAT-76 and TAT-77 series of products, provided by TONNET do not properly verify patch files. Attackers can inject a specific command into a patch file and gain access to the system.
|
CWE-77
Command Injection
|
CVE-2020-3924
|
2024-11-21 14:31 |
2020-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208360
|
9.8 |
CRITICAL
Network
|
tonnet
|
tat-77104g1_firmware
tat-70432n_firmware
tat-71416g1_firmware
tat-71832g1_firmware
tat-76104g3_firmware
tat-76108g3_firmware
tat-76116g3_firmware
tat-76132g3_firmware
|
DVR firmware in TAT-76 and TAT-77 series of products, provided by TONNET, contain misconfigured authentication mechanism. Attackers can crack the default password and gain access to the system.
|
CWE-287
Improper Authentication
|
CVE-2020-3923
|
2024-11-21 14:31 |
2020-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
