CVE-2020-27903

Опубликовано: 08 дек. 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Низкий

Описание

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to gain elevated privileges.

Ссылки

http://seclists.org/fulldisclosure/2020/Dec/26
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2020/Dec/32
Mailing List
Third Party Advisory
https://support.apple.com/en-us/HT211931
Vendor Advisory
https://support.apple.com/kb/HT212011
Vendor Advisory
http://seclists.org/fulldisclosure/2020/Dec/26
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2020/Dec/32
Mailing List
Third Party Advisory
https://support.apple.com/en-us/HT211931
Vendor Advisory
https://support.apple.com/kb/HT212011
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Версия от 11.0 (включая) до 11.0.1 (исключая)

EPSS

Процентиль: 55%

0.0033

Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-qj3w-cxqj-5rxq

github

больше 3 лет назад