CVE-2020-9814
published 2020-06-09CVE-2020-9814: A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to execute arbitrary code with kernel privileges.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | >= unspecified < iOS 13.5 and iPadOS 13.5 | iOS 13.5 and iPadOS 13.5 |
| apple | ipados | < 13.5 | 13.5 |
| apple | iphone_os | < 13.5 | 13.5 |
| apple | mac_os_x | < 10.15.5 | 10.15.5 |
| apple | macos | >= unspecified < macOS Catalina 10.15.5 | macOS Catalina 10.15.5 |
| apple | tvos | < 13.4.5 | 13.4.5 |
| apple | tvos | >= unspecified < tvOS 13.4.5 | tvOS 13.4.5 |
| apple | watchos | < 6.2.5 | 6.2.5 |
| apple | watchos | >= unspecified < watchOS 6.2.5 | watchOS 6.2.5 |
| cairographics | cairo | >= 0 < 1.14.6-1ubuntu0.1~esm1 | 1.14.6-1ubuntu0.1~esm1 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv5.5MEDIUM