CVSS: 2.4EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9848 – Apple Security Advisory 2020-05-26-1
https://notcve.org/view.php?id=CVE-2020-9848
29 May 2020 — An authorization issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5. A person with physical access to an iOS device may be able to view notification contents from the lockscreen. Se abordó un problema de autorización con una administración de estado mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5. • https://support.apple.com/HT211168 •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2020-9806 – webkitgtk: Memory corruption may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2020-9806
29 May 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, tvOS versión 13.4.5, watch... • https://support.apple.com/HT211168 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9814 – Apple Security Advisory 2020-05-26-3
https://notcve.org/view.php?id=CVE-2020-9814
29 May 2020 — A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to execute arbitrary code with kernel privileges. Se presentó un problema lógico resultando en una corrupción de la memoria. • https://support.apple.com/HT211168 • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9842 – Apple Security Advisory 2020-05-26-3
https://notcve.org/view.php?id=CVE-2020-9842
29 May 2020 — An entitlement parsing issue was addressed with improved parsing. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application could interact with system processes to access private information and perform privileged actions. Se abordó la cuestión del análisis de los derechos con un análisis mejorado. Este problema está corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5, watchOS versión 6.2.... • https://support.apple.com/HT211168 •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9797 – Apple Security Advisory 2020-05-26-3
https://notcve.org/view.php?id=CVE-2020-9797
29 May 2020 — An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application's memory layout. Se abordó un problema de divulgación de información mediante la eliminación del código vulnerable. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5, watchOS versión 6.2.5. • https://support.apple.com/HT211168 •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9808 – Apple Security Advisory 2020-05-26-3
https://notcve.org/view.php?id=CVE-2020-9808
29 May 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. An application may be able to cause unexpected system termination or write kernel memory. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5, watchOS versión 6.2.5. • https://support.apple.com/HT211168 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9852 – Apple Security Advisory 2020-05-26-3
https://notcve.org/view.php?id=CVE-2020-9852
29 May 2020 — An integer overflow was addressed through improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó un desbordamiento de enteros por medio de una comprobación de entrada mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5, watchOS versión 6.2.5. • https://support.apple.com/HT211168 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9815 – Apple macOS AudioToolboxCore CAF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-9815
29 May 2020 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. Processing a maliciously crafted audio file may lead to arbitrary code execution. Se abordó una lectura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5, watchOS versión 6.2.5. • https://support.apple.com/HT211168 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 1CVE-2020-9844 – Apple Security Advisory 2020-05-26-3
https://notcve.org/view.php?id=CVE-2020-9844
29 May 2020 — A double free issue was addressed with improved memory management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory. Se abordó un problema doble liberación con una administración de la memoria mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5. • https://packetstorm.news/files/id/158225 • CWE-415: Double Free •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9823 – Apple Security Advisory 2020-05-26-1
https://notcve.org/view.php?id=CVE-2020-9823
29 May 2020 — This issue was addressed with improved checks. This issue is fixed in iOS 13.5 and iPadOS 13.5. Users removed from an iMessage conversation may still be able to alter state. Este problema se abordó con unas comprobaciones mejoradas. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5. • https://support.apple.com/HT211168 •