CVE-2020-9909

Summary

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.6 and iPadOS 13.6affected
AppletvOSunspecified < tvOS 13.4.8affected
ApplewatchOSunspecified < watchOS 6.2.8affected

Weaknesses

  • An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations

ADP Enrichment

CVE Program Container

Additional References

References