VDB

CISA-2020-9802

CISA-2020-9802 PUBLISHED CVSS 8.8 HIGH

Reported by apple · Published June 9, 2020

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.

Risk Scores

CVSS 3.1
8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
AppleiOSunspecified
AppletvOSunspecified
ApplewatchOSunspecified
AppleSafariunspecified
AppleiTunes for Windowsunspecified
AppleiCloud for Windowsunspecified
AppleiCloud for Windows (Legacy)unspecified
AppleiTunes for Windowsunspecified, unspecified
AppleiOSunspecified, unspecified
ApplewatchOSunspecified, unspecified
AppleiCloud for Windows (Legacy)unspecified, unspecified
AppletvOSunspecified, unspecified
AppleiCloud for Windowsunspecified, *
AppleSafari*, unspecified

Timeline

  • Jun 9, 2020 CVE Published
  • May 5, 2025 CVE Updated

References

  • x_refsource_MISC
  • x_refsource_MISC
  • x_refsource_MISC
  • x_refsource_MISC
  • x_refsource_MISC
  • x_refsource_MISC
  • x_refsource_MISC
Open in Interactive Console →
$ Console Community · 100/wk Open console ›