CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-9822
https://notcve.org/view.php?id=CVE-2020-9822
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en macOS Catalina versión 10.15.5. • https://support.apple.com/HT211170 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-9824
https://notcve.org/view.php?id=CVE-2020-9824
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15.5. A non-privileged user may be able to modify restricted network settings. Se abordó un problema lógico con restricciones mejoradas. Este problema es corregido en macOS Catalina versión 10.15.5. • https://support.apple.com/HT211170 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9825
https://notcve.org/view.php?id=CVE-2020-9825
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A malicious application may be able to bypass Privacy preferences. Se abordó un problema de acceso con restricciones de sandbox adicionales. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5. • https://support.apple.com/HT211168 https://support.apple.com/HT211170 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9826
https://notcve.org/view.php?id=CVE-2020-9826
A denial of service issue was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A remote attacker may be able to cause a denial of service. Se abordó un problema de denegación de servicio con una comprobación de entrada mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5. • https://support.apple.com/HT211168 https://support.apple.com/HT211170 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3882
https://notcve.org/view.php?id=CVE-2020-3882
This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.5. Importing a maliciously crafted calendar invitation may exfiltrate user information. Este problema se abordó con comprobaciones mejoradas. Este problema es corregido en macOS Catalina versión 10.15.5. • https://support.apple.com/HT211170 •