CVE-2020-9814
Description
A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to execute arbitrary code with kernel privileges.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.484
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in MacOS Catalina 10.15.5 | Mac |
| Multiple vulnerabilities are fixed in macOS Catalina 10.15.5 Combo Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Catalina 10.15.5 (Deployment-Only) | Mac |
| Multiple vulnerabilities are fixed in macOS Catalina 10.15.5 Combo Update (Deployment-Only) | Mac |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-602673 | MacOS Catalina 10.15.7 - Auto Reboot |
| PATCH-602674 | macOS Catalina 10.15.7 Combo Update - Auto Reboot |
| PATCH-602736 | MacOS Catalina 10.15.5 (Deployment-Only) |
| PATCH-602738 | macOS Catalina 10.15.5 Combo Update (Deployment-Only) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234