|
201261
|
7.1 |
HIGH
Local
|
apple
|
mac_os_x
|
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. A local user …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-9930
|
2024-11-21 14:41 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201262
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
tvos
iphone_os
icloud
watchos
ipados
|
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, iCloud for Windows 7.20, macOS Catalina 10.15.6, Sec…
|
CWE-416
Use After Free
|
CVE-2020-9926
|
2024-11-21 14:41 |
2021-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201263
|
7.8 |
HIGH
Local
|
intel
|
compute_stick_stk1a32sc_firmware
|
Insecure inherited permissions for the Intel(R) SOC driver package for STK1A32SC before version 604 may allow an authenticated user to potentially enable escalation of privilege via local access.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-0109
|
2024-11-21 14:41 |
2021-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201264
|
7.5 |
HIGH
Network
|
apple
|
iphone_os
watchos
icloud
tvos
ipados
mac_os_x
|
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, iCloud for Windows 7.21, tvOS 14.0. A remote attacker may be able to…
|
NVD-CWE-noinfo
|
CVE-2020-9991
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201265
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
watchos
tvos
ipados
mac_os_x
itunes
icloud
|
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iTunes for Windows 12.10.9. Processing a maliciously crafted text file may lead to…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-9999
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201266
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
ipados
mac_os_x
|
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A malicious application may be able to elevate privileges.
|
CWE-416
Use After Free
|
CVE-2020-9996
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201267
|
4.3 |
MEDIUM
Network
|
apple
|
iphone_os
watchos
ipados
safari
|
The issue was addressed with improved UI handling. This issue is fixed in watchOS 7.0, Safari 14.0, iOS 14.0 and iPadOS 14.0. Visiting a malicious website may lead to address bar spoofing.
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2020-9993
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201268
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
watchos
ipados
mac_os_x
|
The issue was addressed with improved deletion. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0. A local user may be able to discover a user’s deleted messages.
|
NVD-CWE-noinfo
|
CVE-2020-9989
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201269
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
ipados
mac_os_x
|
The issue was addressed with improved deletion. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.0 and iPadOS 14.0. A local user may be able to discover a user’s deleted messages.
|
NVD-CWE-noinfo
|
CVE-2020-9988
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201270
|
4.3 |
MEDIUM
Network
|
apple
|
safari
|
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 14.0. Visiting a malicious website may lead to address bar spoofing.
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2020-9987
|
2024-11-21 14:41 |
2020-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
