CVE-2020-9819
published 2020-06-09CVE-2020-9819: A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5, watchOS…
medium4.3CVSS 3.1
AVNACLPRNUIRSUCNINAL
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-05-03
Exploited in the wild
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5, watchOS 5.3.7. Processing a maliciously crafted mail message may lead to heap corruption.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | >= unspecified < iOS 13.5 and iPadOS 13.5 | iOS 13.5 and iPadOS 13.5 |
| apple | ios-1 | >= unspecified < iOS 12.4.7 | iOS 12.4.7 |
| apple | ipados | < 13.5 | 13.5 |
| apple | iphone_os | < 12.4.7 | 12.4.7 |
| apple | iphone_os | >= 13.0 < 13.5 | 13.5 |
| apple | watchos | < 5.3.7 | 5.3.7 |
| apple | watchos | >= 6.0.0 < 6.2.5 | 6.2.5 |
| apple | watchos | >= unspecified < watchOS 6.2.5 | watchOS 6.2.5 |
| apple | watchos-1 | >= unspecified < watchOS 5.3.7 | watchOS 5.3.7 |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
vulncheck4.3MEDIUM
cisa4.3MEDIUM