CVE-2020-3853

Summary

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to execute arbitrary code with system privileges.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.3.1 and iPadOS 13.3.1affected
ApplemacOSunspecified < macOS Catalina 10.15.3affected
AppletvOSunspecified < tvOS 13.3.1affected
ApplewatchOSunspecified < watchOS 6.1.2affected

Weaknesses

  • A malicious application may be able to execute arbitrary code with system privileges

ADP Enrichment

CVE Program Container

Additional References

References