CVE-2020-9819

Summary

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5, watchOS 5.3.7. Processing a maliciously crafted mail message may lead to heap corruption.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.5 and iPadOS 13.5affected
AppleiOS-1unspecified < iOS 12.4.7affected
ApplewatchOSunspecified < watchOS 6.2.5affected
ApplewatchOS-1unspecified < watchOS 5.3.7affected

Weaknesses

  • Processing a maliciously crafted mail message may lead to heap corruption

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References