CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3866
https://notcve.org/view.php?id=CVE-2020-3866
This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Catalina 10.15.3. Searching for and opening a file from an attacker controlled NFS mount may bypass Gatekeeper. Esto se abordó con unas comprobaciones adicionales mediante Gatekeeper en los archivos montados por medio de una red compartida. Este problema está corregido en MacOS Catalina versión 10.15.3. • https://support.apple.com/HT210919 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3835
https://notcve.org/view.php?id=CVE-2020-3835
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be able to access restricted files. Se presentó un problema de comprobación en el manejo de enlaces simbólicos. • https://support.apple.com/HT210919 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3845
https://notcve.org/view.php?id=CVE-2020-3845
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3. An application may be able to execute arbitrary code with system privileges. Se abordó un problema de corrupción de memoria con un manejo de memoria mejorado. Este problema es corregido en macOS Catalina versión 10.15.3. • https://support.apple.com/HT210919 • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3839 – Apple macOS IO80211Family Stack-based Buffer Overflow Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3839
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Catalina 10.15.3. An application may be able to read restricted memory. Se abordó un problema de comprobación con un saneamiento de entrada mejorado. Este problema es corregido en macOS Catalina versión 10.15.3. • https://support.apple.com/HT210919 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-3871
https://notcve.org/view.php?id=CVE-2020-3871
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de memoria con un manejo de memoria mejorado. Este problema es corregido en macOS Catalina versión 10.15.3. • https://support.apple.com/HT210919 • CWE-787: Out-of-bounds Write •