CVE-2020-27898

Опубликовано: 08 дек. 2020

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1. An attacker may be able to bypass Managed Frame Protection.

Ссылки

http://seclists.org/fulldisclosure/2020/Dec/26
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2020/Dec/32
Mailing List
Third Party Advisory
https://support.apple.com/en-us/HT211931
Vendor Advisory
https://support.apple.com/kb/HT212011
Vendor Advisory
http://seclists.org/fulldisclosure/2020/Dec/26
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2020/Dec/32
Mailing List
Third Party Advisory
https://support.apple.com/en-us/HT211931
Vendor Advisory
https://support.apple.com/kb/HT212011
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Версия до 11.0.1 (исключая)

EPSS

Процентиль: 37%

0.00159

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-252

Связанные уязвимости

GHSA-qq7j-g886-9qqh

github

больше 3 лет назад