High severity8.8NVD Advisory· Published Feb 27, 2020· Updated Jun 17, 2026
CVE-2020-3868
CVE-2020-3868
Description
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
77<=13.3+ 1 more
- (no CPE)range: <=13.3
- (no CPE)range: unspecified
- Range: <=13.3
<=13.0.4+ 1 more
- (no CPE)range: <=13.0.4
- (no CPE)range: unspecified
<=13.3+ 1 more
- (no CPE)range: <=13.3
- (no CPE)range: unspecified
<=12.10.3+ 1 more
- (no CPE)range: <=12.10.3
- (no CPE)range: unspecified
<=7.16+ 2 more
- (no CPE)range: <=7.16
- (no CPE)range: unspecified
- (no CPE)range: unspecified
- osv-coords65 versionspkg:rpm/almalinux/dleyna-rendererpkg:rpm/almalinux/frei0r-develpkg:rpm/almalinux/frei0r-pluginspkg:rpm/almalinux/frei0r-plugins-opencvpkg:rpm/almalinux/gnome-remote-desktoppkg:rpm/almalinux/gtk-docpkg:rpm/almalinux/gvfspkg:rpm/almalinux/LibRaw-develpkg:rpm/almalinux/libsouppkg:rpm/almalinux/libsoup-develpkg:rpm/almalinux/mutter-develpkg:rpm/almalinux/nautiluspkg:rpm/almalinux/nautilus-develpkg:rpm/almalinux/PackageKitpkg:rpm/almalinux/PackageKit-command-not-foundpkg:rpm/almalinux/PackageKit-cronpkg:rpm/almalinux/PackageKit-glibpkg:rpm/almalinux/PackageKit-glib-develpkg:rpm/almalinux/PackageKit-gstreamer-pluginpkg:rpm/almalinux/PackageKit-gtk3-modulepkg:rpm/almalinux/pipewirepkg:rpm/almalinux/pipewire0.2-develpkg:rpm/almalinux/pipewire0.2-libspkg:rpm/almalinux/pipewire-develpkg:rpm/almalinux/pipewire-docpkg:rpm/almalinux/pipewire-libspkg:rpm/almalinux/pipewire-utilspkg:rpm/almalinux/potracepkg:rpm/almalinux/pygobject3-develpkg:rpm/almalinux/python3-gobjectpkg:rpm/almalinux/python3-gobject-basepkg:rpm/almalinux/trackerpkg:rpm/almalinux/tracker-develpkg:rpm/almalinux/vte291pkg:rpm/almalinux/vte291-develpkg:rpm/almalinux/vte-profilepkg:rpm/almalinux/webrtc-audio-processingpkg:rpm/almalinux/xdg-desktop-portal-gtkpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/webkit2gtk3&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%205pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208
< 0.6.0-3.el8+ 64 more
- (no CPE)range: < 0.6.0-3.el8
- (no CPE)range: < 1.6.1-7.el8
- (no CPE)range: < 1.6.1-7.el8
- (no CPE)range: < 1.6.1-7.el8
- (no CPE)range: < 0.1.8-3.el8
- (no CPE)range: < 1.28-2.el8
- (no CPE)range: < 1.36.2-10.el8
- (no CPE)range: < 0.19.5-2.el8
- (no CPE)range: < 2.62.3-2.el8
- (no CPE)range: < 2.62.3-2.el8
- (no CPE)range: < 3.32.2-48.el8
- (no CPE)range: < 3.28.1-14.el8
- (no CPE)range: < 3.28.1-14.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 1.1.12-6.el8
- (no CPE)range: < 0.3.6-1.el8
- (no CPE)range: < 0.2.7-6.el8
- (no CPE)range: < 0.2.7-6.el8
- (no CPE)range: < 0.3.6-1.el8
- (no CPE)range: < 0.3.6-1.el8
- (no CPE)range: < 0.3.6-1.el8
- (no CPE)range: < 0.3.6-1.el8
- (no CPE)range: < 1.15-3.el8
- (no CPE)range: < 3.28.3-2.el8
- (no CPE)range: < 3.28.3-2.el8
- (no CPE)range: < 3.28.3-2.el8
- (no CPE)range: < 2.1.5-2.el8
- (no CPE)range: < 2.1.5-2.el8
- (no CPE)range: < 0.52.4-2.el8
- (no CPE)range: < 0.52.4-2.el8
- (no CPE)range: < 0.52.4-2.el8
- (no CPE)range: < 0.3-9.el8
- (no CPE)range: < 1.6.0-1.el8
- (no CPE)range: < 2.26.4-lp151.2.12.1
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.26.4-3.43.1
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
- (no CPE)range: < 2.28.1-2.50.3
Patches
Vulnerability mechanics
References
5- lists.opensuse.org/opensuse-security-announce/2020-03/msg00004.htmlnvdMailing ListPatchThird Party Advisory
- security.gentoo.org/glsa/202003-22nvdThird Party Advisory
- support.apple.com/HT210920nvdRelease NotesVendor Advisory
- support.apple.com/HT210947nvdRelease NotesVendor Advisory
- support.apple.com/HT210948nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.