CVE-2020-9855

Summary

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.5. A local attacker may be able to elevate their privileges.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < macOS Catalina 10.15.5affected

Weaknesses

  • A local attacker may be able to elevate their privileges

ADP Enrichment

CVE Program Container

Additional References

References