CVE-2020-9885

Summary

An issue existed in the handling of iMessage tapbacks. The issue was resolved with additional verification. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. A user that is removed from an iMessage group could rejoin the group.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.6 and iPadOS 13.6affected
ApplemacOSunspecified < macOS Catalina 10.15.6affected
AppletvOSunspecified < tvOS 13.4.8affected
ApplewatchOSunspecified < watchOS 6.2.8affected

Weaknesses

  • A user that is removed from an iMessage group could rejoin the group

ADP Enrichment

CVE Program Container

Additional References

References