Unrated severityCISA KEVNVD Advisory· Published Dec 8, 2020· Updated Oct 21, 2025

CVE-2020-27932

Description

A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS Catalina 10.15.7 Update. A malicious application may be able to execute arbitrary code with kernel privileges.

Affected products

Apple Inc./macOSv5
Range: unspecified
Apple Inc./watchOSv5
Range: unspecified
Apple/iOS and iPadOSv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/161295/XNU-Kernel-Turnstiles-Type-Confusion.htmlmitrex_refsource_MISC
seclists.org/fulldisclosure/2020/Dec/32mitremailing-listx_refsource_FULLDISC
support.apple.com/en-us/HT211928mitrex_refsource_MISC
support.apple.com/en-us/HT211929mitrex_refsource_MISC
support.apple.com/en-us/HT211931mitrex_refsource_MISC
support.apple.com/en-us/HT211940mitrex_refsource_MISC
support.apple.com/en-us/HT211944mitrex_refsource_MISC
support.apple.com/en-us/HT211945mitrex_refsource_MISC
support.apple.com/en-us/HT211946mitrex_refsource_MISC
support.apple.com/en-us/HT211947mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.010
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000