CVSS: 9.3EPSS: 0%CPEs: 18EXPL: 0CVE-2020-29612 – Apple macOS patch_encoding_common Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-29612
16 Dec 2020 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to execute arbitrary code with system privileges. Se abordó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. • https://support.apple.com/en-us/HT212011 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27941 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27941
16 Dec 2020 — A validation issue was addressed with improved logic. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de comprobación con una lógica mejorada. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. • https://support.apple.com/en-us/HT212011 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2020-29621 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-29621
16 Dec 2020 — This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to bypass Privacy preferences. Este problema es abordado con comprobaciones mejoradas. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. • https://support.apple.com/en-us/HT212011 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2020-29616 – Apple macOS CoreGraphics Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-29616
16 Dec 2020 — A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. Processing a maliciously crafted image may lead to arbitrary code execution. Se abordó un problema de corrupción de memoria con una comprobación mejorada de la entrada. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. • https://support.apple.com/en-us/HT212011 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2020-29620 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-29620
16 Dec 2020 — This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to elevate privileges. Este problema es abordado con derechos mejorados. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. • https://support.apple.com/en-us/HT212011 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 1CVE-2020-27949 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27949
16 Dec 2020 — This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may cause unexpected changes in memory belonging to processes traced by DTrace. Este problema es abordado con comprobaciones mejoradas para impedir acciones no autorizadas. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mo... • https://github.com/seemoo-lab/dtrace-memaccess_cve-2020-27949 •
CVSS: 4.5EPSS: 0%CPEs: 21EXPL: 0CVE-2020-9978 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-9978
16 Dec 2020 — This issue was addressed with improved setting propagation. This issue is fixed in macOS Big Sur 11.0.1, tvOS 14.0, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.0, iOS 14.0 and iPadOS 14.0. An attacker in a privileged network position may be able to unexpectedly alter application state. Este problema es abordado con una propagación de configuración mejorada. Este problema es corregido en macOS Big Sur versión 11.0.1, tvOS versión 14.0, macOS Big Sur ... • https://support.apple.com/en-us/HT211843 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2020-27943 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27943
16 Dec 2020 — A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in tvOS 14.3, iOS 14.3 and iPadOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.2. Processing a maliciously crafted font file may lead to arbitrary code execution. Se presentó un problema de corrupción de memoria en un procesamiento de archivos de fuentes. • https://packetstorm.news/files/id/161298 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2020-27944 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27944
16 Dec 2020 — A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted font file may lead to arbitrary code execution. Se presentó un problema de corrupción de memoria en un procesamiento de archivos de fuentes. • https://packetstorm.news/files/id/161300 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 22EXPL: 1CVE-2020-27946 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27946
16 Dec 2020 — An information disclosure issue was addressed with improved state management. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted font may result in the disclosure of process memory. Se abordó un problema de divulgación de información con una administración de estado mejorada. Este problema es corregido en watchOS versión 7.2, macOS Big Sur versión 11.1, Security... • https://packetstorm.news/files/id/161297 •