CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27901 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27901
16 Dec 2020 —  Un proceso en sandbox puede ser capaz de omitir las restricciones del sandbox. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 • CWE-863: Incorrect Authorization •
CVSS: 9.3EPSS: 0%CPEs: 18EXPL: 0CVE-2020-29612 – Apple macOS patch_encoding_common Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-29612
16 Dec 2020 — An attacker can leverage this vulnerability to escalate privileges and execute code in the context of the kernel. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212011 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27941 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27941
16 Dec 2020 —  Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios de kernel. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212011 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2020-29621 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-29621
16 Dec 2020 —  Una aplicación maliciosa puede omitir las preferencias de privacidad. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212011 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27919 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27919
16 Dec 2020 —  El procesamiento de una imagen diseñada maliciosamente puede conllevar a una ejecución de código arbitraria. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27921 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27921
16 Dec 2020 —  Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios de kernel. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2020-29616 – Apple macOS CoreGraphics Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-29616
16 Dec 2020 — An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212011 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27915 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27915
16 Dec 2020 —  Una aplicación maliciosa puede ser capaz de ejecutar código arbitrario con privilegios system. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2020-29620 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-29620
16 Dec 2020 —  Una aplicación maliciosa puede elevar los privilegios. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212011 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-10008 – Apple Security Advisory 2020-12-14-4
https://notcve.org/view.php?id=CVE-2020-10008
16 Dec 2020 —  Una aplicación maliciosa con privilegios root puede ser capaz de acceder a información privada. macOS Big Sur 11.0.1 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, path sanitization, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 •