|
199331
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
ipados
tvos
watchos
mac_os_x
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, macOS Catalina 10.15.3, Security Update 2020-001 M…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-3880
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199332
|
7.8 |
HIGH
Local
|
apple
redhat
|
iphone_os
ipados
tvos
safari
icloud
itunes
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
|
A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and…
|
CWE-346
Origin Validation Error
|
CVE-2020-3864
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199333
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. An applica…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-3863
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199334
|
7.1 |
HIGH
Local
|
apple
|
mac_os_x
|
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. A malicious appl…
|
NVD-CWE-noinfo
|
CVE-2020-3855
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199335
|
5.3 |
MEDIUM
Network
|
apple
|
safari
|
A logic issue was addressed with improved validation. This issue is fixed in Safari 13.0.5. A URL scheme may be incorrectly ignored when determining multimedia permission for a website.
|
CWE-863
Incorrect Authorization
|
CVE-2020-3852
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199336
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra, macOS Catal…
|
CWE-416
Use After Free
|
CVE-2020-3851
|
2024-11-21 14:31 |
2020-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199337
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
iphone_os
tvos
watchos
ipad_os
|
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A local user may be able to view s…
|
NVD-CWE-Other
|
CVE-2020-3918
|
2024-11-21 14:31 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199338
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A path handling issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to overwrite arbitrary files.
|
NVD-CWE-Other
|
CVE-2020-3915
|
2024-11-21 14:31 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199339
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2020-3898
|
2024-11-21 14:31 |
2020-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199340
|
6.1 |
MEDIUM
Network
|
cisco
|
adaptive_security_appliance
adaptive_security_appliance_software
|
A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac…
|
CWE-79
Cross-site Scripting
|
CVE-2020-3599
|
2024-11-21 14:31 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
