Unrated severityNVD Advisory· Published Sep 23, 2022· Updated May 22, 2025

CVE-2020-36521

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iCloud for Windows 11.4, iOS 14.0 and iPadOS 14.0, watchOS 7.0, tvOS 14.0, iCloud for Windows 7.21, iTunes for Windows 12.10.9. Processing a maliciously crafted tiff file may lead to a denial-of-service or potentially disclose memory contents.

Affected products

Apple Inc./watchOSv5
Range: unspecified
Apple/iCloud for Windowsv5
Range: unspecified
Apple Inc./iOS and iPadOScpe-rescue
Range: unspecified
Apple Inc./iTunes for Windowscpe-rescue
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/en-us/HT211843mitrex_refsource_MISC
support.apple.com/en-us/HT211844mitrex_refsource_MISC
support.apple.com/en-us/HT211846mitrex_refsource_MISC
support.apple.com/en-us/HT211847mitrex_refsource_MISC
support.apple.com/en-us/HT211850mitrex_refsource_MISC
support.apple.com/en-us/HT211952mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000