VDB
CVE-2020-9849
CVE-2020-9849
PUBLISHED
An information disclosure issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, iTunes for Windows 12.10.9, iCloud for Windows 11.5, tvOS 14.0. A remote attacker may be able to leak memory.
EPSS 1.07% · 78.1th percentile
Risk Scores
EPSS Score
1.07%
78.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | sqlite | 0, 2.8.17-12fakesync1 |
Timeline
- Nov 13, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2020-9849 third-party-advisory
- https://support.apple.com/en-us/HT211931 third-party-advisory
- https://www.rapid7.com/db/vulnerabilities/apple-osx-sqlite-cve-2020-9849/ third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2020-9849 third-party-advisory