CVE-2020-9852

Summary

An integer overflow was addressed through improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to execute arbitrary code with kernel privileges.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.5 and iPadOS 13.5affected
ApplemacOSunspecified < macOS Catalina 10.15.5affected
AppletvOSunspecified < tvOS 13.4.5affected
ApplewatchOSunspecified < watchOS 6.2.5affected

Weaknesses

  • A malicious application may be able to execute arbitrary code with kernel privileges

ADP Enrichment

CVE Program Container

Additional References

References