CVE-2020-9841Integer Overflow or Wraparound in Apple Macos

CWE-190Integer Overflow or Wraparound3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.3%
top 50.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MacosApple MAC OS X
Timeline
PublishedJun 9
Latest updateMay 24

Description

An integer overflow was addressed through improved input validation. This issue is fixed in macOS Catalina 10.15.5. An application may be able to execute arbitrary code with kernel privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5apple/macosunspecifiedmacOS Catalina 10.15.5
NVDapple/mac_os_x< 10.15.5

🔴Vulnerability Details

1
GHSA
GHSA-cpg3-cwhc-35xp: An integer overflow was addressed through improved input validation2022-05-24
CVE-2020-9841 — Integer Overflow or Wraparound in Apple | cvebase