Home

CVE-2020-9776

Description

This issue was addressed with a new entitlement. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to access a users call history.

Risk Information

Base Score
3.3
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.19

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are fixed in MacOS Catalina 10.15.4Mac
Multiple vulnerabilities are fixed in MacOS Catalina 10.15.4 Combo UpdateMac
Multiple vulnerabilities are fixed in MacOS Catalina 10.15.4 (Deployment-Only)Mac
Multiple vulnerabilities are fixed in MacOS Catalina 10.15.4 Combo Update (Deployment-Only)Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-602673MacOS Catalina 10.15.7 - Auto Reboot
PATCH-602674macOS Catalina 10.15.7 Combo Update - Auto Reboot
PATCH-602735MacOS Catalina 10.15.4 (Deployment-Only)
PATCH-602737MacOS Catalina 10.15.4 Combo Update (Deployment-Only)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234