CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2020-3914 – Apple Security Advisory 2020-03-24-4
https://notcve.org/view.php?id=CVE-2020-3914
25 Mar 2020 — A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to read restricted memory. Se abordó un problema de inicialización de memoria con un manejo de la memoria mejorado. Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4, macOS Catalina versión 10.15.4, tvOS versión 13.4, watchOS versión 6.2. • https://support.apple.com/HT211100 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2020-3919 – Apple Security Advisory 2020-03-24-4
https://notcve.org/view.php?id=CVE-2020-3919
25 Mar 2020 — A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de inicialización de memoria con un manejo de la memoria mejorado. Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4, macOS Catalina versión 10.15.4, tvOS versión 13.4, watchOS versión 6.2. • https://support.apple.com/HT211100 • CWE-665: Improper Initialization •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9781 – Apple Security Advisory 2020-03-24-1
https://notcve.org/view.php?id=CVE-2020-9781
25 Mar 2020 — The issue was addressed by clearing website permission prompts after navigation. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user may grant website permissions to a site they didn't intend to. Se abordó el problema al borrar las peticiones de permiso del sitio web después de la navegación. Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4. • https://support.apple.com/HT211102 • CWE-281: Improper Preservation of Permissions •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9785 – Apple Security Advisory 2020-03-24-4
https://notcve.org/view.php?id=CVE-2020-9785
25 Mar 2020 — Multiple memory corruption issues were addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordaron múltiples problemas de corrupción de la memoria con una administración de estado mejorada. Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4, macOS Catalina versión 10.15.4, tvOS versión 13.4, watchOS versión 6.2. • https://support.apple.com/HT211100 • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9777 – Apple Security Advisory 2020-03-24-1
https://notcve.org/view.php?id=CVE-2020-9777
25 Mar 2020 — An issue existed in the selection of video file by Mail. The issue was fixed by selecting the latest version of a video. This issue is fixed in iOS 13.4 and iPadOS 13.4. Cropped videos may not be shared properly via Mail. Existía un problema en la selección del archivo de video mediante Mail. • https://support.apple.com/HT211102 •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-9768 – Apple Security Advisory 2020-03-24-4
https://notcve.org/view.php?id=CVE-2020-9768
25 Mar 2020 — A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2. An application may be able to execute arbitrary code with system privileges. Se abordó un problema de uso de la memoria previamente liberada con una administración de memoria mejorada . Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4, tvOS versión 13.4, watchOS versión 6.2. • https://support.apple.com/HT211101 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-3917 – Apple Security Advisory 2020-03-24-4
https://notcve.org/view.php?id=CVE-2020-3917
25 Mar 2020 — This issue was addressed with a new entitlement. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2. An application may be able to use an SSH client provided by private frameworks. Este problema se abordó con un nuevo derecho. Este problema es corregido en iOS versión 13.4 y iPadOS versión 13.4, tvOS versión 13.4, watchOS versión 6.2. • https://support.apple.com/HT211101 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-3913 – Apple Security Advisory 2020-03-24-4
https://notcve.org/view.php?id=CVE-2020-3913
25 Mar 2020 — A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, watchOS 6.2. A malicious application may be able to elevate privileges. Existía un problema de permisos. • https://support.apple.com/HT211100 •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9773 – Apple Security Advisory 2020-11-13-3
https://notcve.org/view.php?id=CVE-2020-9773
25 Mar 2020 — The issue was addressed with improved handling of icon caches. This issue is fixed in iOS 14.0 and iPadOS 14.0. A malicious application may be able to identify what other applications a user has installed. Se abordó el problema con un manejo mejorado de las cachés de iconos. Este problema es corregido en iOS versión 14.0 y iPadOS versión 14.0. • http://seclists.org/fulldisclosure/2020/Nov/20 •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9775 – Apple Security Advisory 2020-03-24-1
https://notcve.org/view.php?id=CVE-2020-9775
25 Mar 2020 — An issue existed in the handling of tabs displaying picture in picture video. The issue was corrected with improved state handling. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user's private browsing activity may be unexpectedly saved in Screen Time. Existía un problema en el manejo de las pestañas que mostraban la imagen en un video imagen. • https://support.apple.com/HT211102 • CWE-665: Improper Initialization •