|
202501
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
tvos
iphone_os
watchos
ipados
|
A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. An application may be a…
|
CWE-665
Improper Initialization
|
CVE-2020-9863
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202502
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
iphone_os
tvos
ipados
|
A logic issue was addressed with improved validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5. An application may be able to gain elevated privileges.
|
NVD-CWE-noinfo
|
CVE-2020-9854
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202503
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to determine kernel memory layout.
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2020-9853
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202504
|
7.5 |
HIGH
Network
|
apple
|
mac_os_x
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A remote attacker may be able to leak sensitive user information.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9828
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202505
|
6.8 |
MEDIUM
Physics
|
apple
|
mac_os_x
|
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15.5. A person with physical access to a Mac may be able to bypass Login Window.
|
NVD-CWE-noinfo
|
CVE-2020-9810
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202506
|
7.0 |
HIGH
Local
|
apple
|
mac_os_x
|
A race condition was addressed with improved state handling. This issue is fixed in macOS Catalina 10.15.5. An application may be able to execute arbitrary code with kernel privileges.
|
CWE-362
Race Condition
|
CVE-2020-9796
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202507
|
5.3 |
MEDIUM
Network
|
apple
|
iphone_os
tvos
watchos
ipad_os
mac_os_x
|
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. Some websites may not have appeared in Safari …
|
NVD-CWE-Other
|
CVE-2020-9787
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202508
|
7.1 |
HIGH
Local
|
apple
|
mac_os_x
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or read kernel memor…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9779
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202509
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
iphone_os
tvos
watchos
ipad_os
|
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A sandboxed process may be able to circumvent …
|
NVD-CWE-noinfo
|
CVE-2020-9772
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202510
|
7.1 |
HIGH
Local
|
apple
|
mac_os_x
|
This issue was addressed with a new entitlement. This issue is fixed in macOS Catalina 10.15.4. A user may gain access to protected parts of the file system.
|
NVD-CWE-noinfo
|
CVE-2020-9771
|
2024-11-21 14:41 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
