CVE-2020-27951Apple IOS AND Ipados vulnerability

3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.4%
top 36.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Apple IOSApple IOS AND IpadosApple Watchos+2 more
Timeline
PublishedApr 2
Latest updateMay 24

Description

This issue was addressed with improved checks. This issue is fixed in watchOS 6.3, iOS 12.5, iOS 14.3 and iPadOS 14.3, watchOS 7.2. Unauthorized code execution may lead to an authentication policy violation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

CVEListV5apple/watchosunspecified6.3+1
NVDapple/watchos6.06.3+1
NVDapple/ipados< 14.3
CVEListV5apple/ios_and_ipadosunspecified14.3
CVEListV5apple/iosunspecified12.5

🔴Vulnerability Details

2
GHSA
GHSA-3mgj-7ppj-9qfc: This issue was addressed with improved checks2022-05-24
CVEList
CVE-2020-27951: This issue was addressed with improved checks2021-04-02
CVE-2020-27951 — Apple IOS AND Ipados vulnerability | cvebase