CVE-2020-9958Out-of-bounds Write in Apple Ipados

CWE-787Out-of-bounds Write4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 60.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple IOSApple IpadosApple Iphone OS
Timeline
PublishedOct 16
Latest updateMay 24

Description

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 14.0 and iPadOS 14.0. An application may be able to cause unexpected system termination or write kernel memory.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDapple/ipados< 14.0
CVEListV5apple/iosunspecifiediOS 14.0 and iPadOS 14.0
NVDapple/iphone_os< 14.0

🔴Vulnerability Details

2
GHSA
GHSA-ggv4-hh76-gfg8: An out-of-bounds write issue was addressed with improved bounds checking2022-05-24
CVEList
CVE-2020-9958: An out-of-bounds write issue was addressed with improved bounds checking2020-10-16

💥Exploits & PoCs

1
Exploit-DB
Foxit Reader 9.0.1.1049 - Arbitrary Code Execution2020-11-27
CVE-2020-9958 — Out-of-bounds Write in Apple Ipados | cvebase