CVE-2020-3860

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.
References
Link Resource
https://support.apple.com/HT210918 Release Notes Vendor Advisory
https://support.apple.com/HT210921 Release Notes Vendor Advisory
https://support.apple.com/HT210918 Release Notes Vendor Advisory
https://support.apple.com/HT210921 Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:31

Type Values Removed Values Added
References () https://support.apple.com/HT210918 - Release Notes, Vendor Advisory () https://support.apple.com/HT210918 - Release Notes, Vendor Advisory
References () https://support.apple.com/HT210921 - Release Notes, Vendor Advisory () https://support.apple.com/HT210921 - Release Notes, Vendor Advisory

Information

Published : 2020-02-27 21:15

Updated : 2024-11-21 05:31


NVD link : CVE-2020-3860

Mitre link : CVE-2020-3860

CVE.ORG link : CVE-2020-3860


JSON object : View

Products Affected

apple

  • ipados
  • iphone_os
  • watchos
CWE
CWE-20

Improper Input Validation

CWE-787

Out-of-bounds Write