CVE-2020-27940Apple TV APP FOR Fire OS vulnerability

3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 54.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple TV APP FOR Fire OSApple TV
Timeline
PublishedSep 8
Latest updateMay 24

Description

This issue was addressed with improved file handling. This issue is fixed in Apple TV app for Fire OS 6.1.0.6A142:7.1.0. An attacker with file system access may modify scripts used by the app.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5apple/apple_tv_app_for_fire_osunspecified6.1.0.6A142:7.1.0
NVDapple/apple_tv< 5.1

🔴Vulnerability Details

2
GHSA
GHSA-82p8-66pg-8588: This issue was addressed with improved file handling2022-05-24
CVEList
CVE-2020-27940: This issue was addressed with improved file handling2021-09-08
CVE-2020-27940 — Apple TV APP FOR Fire OS vulnerability | cvebase