Total
34204 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-3906 | 1 Apple | 1 Mac Os X | 2024-11-21 | 7.8 High |
| A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15.4. A maliciously crafted application may be able to bypass code signing enforcement. | ||||
| CVE-2020-3899 | 2 Apple, Redhat | 8 Icloud, Ipad Os, Iphone Os and 5 more | 2024-11-21 | 8.8 High |
| A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A remote attacker may be able to cause arbitrary code execution. | ||||
| CVE-2020-3896 | 1 Apple | 1 Mac Os X | 2024-11-21 | 5.5 Medium |
| This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to overwrite arbitrary files. | ||||
| CVE-2020-3891 | 1 Apple | 3 Ipad Os, Iphone Os, Watchos | 2024-11-21 | 2.4 Low |
| A logic issue was addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. A person with physical access to a locked iOS device may be able to respond to messages even when replies are disabled. | ||||
| CVE-2020-3890 | 1 Apple | 2 Ipad Os, Iphone Os | 2024-11-21 | 5.3 Medium |
| The issue was addressed with improved deletion. This issue is fixed in iOS 13.4 and iPadOS 13.4. Deleted messages groups may still be suggested as an autocompletion. | ||||
| CVE-2020-3889 | 1 Apple | 1 Mac Os X | 2024-11-21 | 5.5 Medium |
| A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to read arbitrary files. | ||||
| CVE-2020-3888 | 1 Apple | 2 Ipad Os, Iphone Os | 2024-11-21 | 4.3 Medium |
| A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4. A maliciously crafted page may interfere with other web contexts. | ||||
| CVE-2020-3883 | 1 Apple | 5 Ipad Os, Iphone Os, Mac Os X and 2 more | 2024-11-21 | 8.8 High |
| This issue was addressed with improved checks. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to use arbitrary entitlements. | ||||
| CVE-2020-3882 | 1 Apple | 1 Mac Os X | 2024-11-21 | 6.5 Medium |
| This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.5. Importing a maliciously crafted calendar invitation may exfiltrate user information. | ||||
| CVE-2020-3881 | 1 Apple | 1 Mac Os X | 2024-11-21 | 5.5 Medium |
| A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to view sensitive user information. | ||||
| CVE-2020-3873 | 1 Apple | 2 Ipados, Iphone Os | 2024-11-21 | 3.3 Low |
| This issue was addressed with improved setting propagation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Turning off "Load remote content in messages” may not apply to all mail previews. | ||||
| CVE-2020-3869 | 1 Apple | 2 Ipados, Iphone Os | 2024-11-21 | 5.3 Medium |
| An issue existed in the handling of the local user's self-view. The issue was corrected with improved logic. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A remote FaceTime user may be able to cause the local user's camera self-view to display the incorrect camera. | ||||
| CVE-2020-3866 | 1 Apple | 1 Mac Os X | 2024-11-21 | 5.5 Medium |
| This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Catalina 10.15.3. Searching for and opening a file from an attacker controlled NFS mount may bypass Gatekeeper. | ||||
| CVE-2020-3862 | 3 Apple, Opensuse, Redhat | 8 Icloud, Ipados, Iphone Os and 5 more | 2024-11-21 | 6.5 Medium |
| A denial of service issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. A malicious website may be able to cause a denial of service. | ||||
| CVE-2020-3861 | 1 Apple | 1 Itunes | 2024-11-21 | 7.1 High |
| The issue was addressed with improved permissions logic. This issue is fixed in iTunes for Windows 12.10.4. A user may gain access to protected parts of the file system. | ||||
| CVE-2020-3859 | 1 Apple | 2 Ipados, Iphone Os | 2024-11-21 | 2.4 Low |
| An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A person with physical access to an iOS device may be able to access contacts from the lock screen. | ||||
| CVE-2020-3855 | 1 Apple | 1 Mac Os X | 2024-11-21 | 7.1 High |
| An access issue was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. A malicious application may be able to overwrite arbitrary files. | ||||
| CVE-2020-3844 | 1 Apple | 2 Ipados, Iphone Os | 2024-11-21 | 3.3 Low |
| This issue was addressed with improved checks. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Users removed from an iMessage conversation may still be able to alter state. | ||||
| CVE-2020-3836 | 1 Apple | 5 Ipados, Iphone Os, Mac Os X and 2 more | 2024-11-21 | 5.5 Medium |
| An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout. | ||||
| CVE-2020-3828 | 1 Apple | 2 Ipados, Iphone Os | 2024-11-21 | 2.4 Low |
| A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A person with physical access to an iOS device may be able to access contacts from the lock screen. | ||||