CVE-2020-3840 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Macos

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-193 — Off-by-one Error3 documents3 sources

Severity

7.8HIGHNVD

EPSS

0.5%

top 35.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple IOS Apple Macos Apple Tvos +3 more

Timeline

PublishedFeb 27

Latest updateMay 24

Description

An off by one issue existed in the handling of racoon configuration files. This issue was addressed through improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1. Loading a maliciously crafted racoon configuration file may lead to arbitrary code execution.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages7 packages

▶CVEListV5apple/tvosunspecified — tvOS 13.3.1

▶NVDapple/tvos< 13.3.1

▶CVEListV5apple/macosunspecified — macOS Catalina 10.15.3

▶NVDapple/ipados< 13.3.1

▶NVDapple/mac_os_x< 10.15.3

🔴Vulnerability Details

GHSA

GHSA-pjgc-v69x-rhfq: An off by one issue existed in the handling of racoon configuration files↗2022-05-24

▶

CVEList

CVE-2020-3840: An off by one issue existed in the handling of racoon configuration files↗2020-02-27

▶