Unrated severityNVD Advisory· Published Dec 8, 2020· Updated Aug 4, 2024
CVE-2020-27909
CVE-2020-27909
Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted audio file may lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7<14.2+ 1 more
- (no CPE)range: <14.2
- (no CPE)range: unspecified
- Range: <14.2
<7.1+ 1 more
- (no CPE)range: <7.1
- (no CPE)range: unspecified
- Range: <14.2
- Range: unspecified
Patches
Vulnerability mechanics
References
6- seclists.org/fulldisclosure/2020/Dec/32mitremailing-listx_refsource_FULLDISC
- support.apple.com/en-us/HT211928mitrex_refsource_MISC
- support.apple.com/en-us/HT211929mitrex_refsource_MISC
- support.apple.com/en-us/HT211930mitrex_refsource_MISC
- support.apple.com/kb/HT211931mitrex_refsource_CONFIRM
- www.zerodayinitiative.com/advisories/ZDI-21-374/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.