CVE-2020-9818
published 2020-06-09CVE-2020-9818: An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-05-03
Exploited in the wild
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5. Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | >= unspecified < iOS 13.5 and iPadOS 13.5 | iOS 13.5 and iPadOS 13.5 |
| apple | ios-1 | >= unspecified < iOS 12.4.7 | iOS 12.4.7 |
| apple | ipados | < 13.5 | 13.5 |
| apple | iphone_os | < 12.4.7 | 12.4.7 |
| apple | iphone_os | >= 13.0 < 13.5 | 13.5 |
| apple | watchos | < 6.2.5 | 6.2.5 |
| apple | watchos | >= unspecified < watchOS 6.2.5 | watchOS 6.2.5 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vulncheck8.8HIGH
cisa8.8HIGH