VDB
CVE-2020-27943
CVE-2020-27943
PUBLISHED
CVSS 7.800000190734863 HIGH
A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in tvOS 14.3, iOS 14.3 and iPadOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.2. Processing a maliciously crafted font file may lead to arbitrary code execution.
EPSS 0.43% · 63.0th percentile
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.43%
63.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | iOS and iPadOS | unspecified |
| Apple | macOS | unspecified |
| apple | macos | 0 |
| apple | iphone_os | 0 |
| Apple | tvOS | unspecified |
| apple | ipad_os | 0 |
| apple | tvos | 0 |
| Apple | watchOS | unspecified |
| apple | watchos | 0 |
Timeline
- Apr 2, 2021 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 25, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 27, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 2, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
References
- https://support.apple.com/en-us/HT212009 url
- https://support.apple.com/en-us/HT212005 advisory
- https://support.apple.com/en-us/HT212011 advisory
- https://support.apple.com/en-us/HT212003 advisory
- https://support.apple.com/fr-fr/HT212006 advisory
- https://support.apple.com/fr-fr/HT212004 advisory
- https://support.apple.com/fr-fr/HT212003 advisory
- https://support.apple.com/fr-fr/HT212007 advisory
- https://support.apple.com/fr-fr/HT211932 advisory
- https://support.apple.com/fr-fr/HT212009 advisory
- https://support.apple.com/fr-fr/HT212005 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-27943 advisory