exploitDog

CVE-2020-9899

Опубликовано: 22 окт. 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Низкий

Описание

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.6. An application may be able to execute arbitrary code with kernel privileges.

Ссылки

https://support.apple.com/kb/HT211289
Vendor Advisory
https://support.apple.com/kb/HT211289
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия от 10.13.6 (включая) до 10.15.6 (исключая)

EPSS

Процентиль: 47%

0.00245

Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-528v-gr3q-63mr

github

больше 3 лет назад

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.6. An application may be able to execute arbitrary code with kernel privileges.

EPSS

Процентиль: 47%

0.00245

Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-787