GSD-2020-9934 — Vulnetix

Try Vulnetix Request Demo

GSD-2020-9934 PUBLISHED CVSS 5.5 MEDIUM

An issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6. A local user may be able to view sensitive user information.

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
Apple	macOS	unspecified
Apple	iOS	unspecified

Timeline

Dec 11, 2019 CVE Published
Sep 11, 2020 PoC Published
Jun 14, 2023 PoC Published
Dec 24, 2024 PoC Published
Feb 6, 2025 PoC Published
Feb 23, 2025 PoC Published
Feb 23, 2025 PoC Published
Feb 2, 2026 PoC Published

References

Open in Interactive Console →