VYPR
Unrated severityNVD Advisory· Published Oct 22, 2020· Updated Aug 4, 2024

CVE-2020-9938

CVE-2020-9938

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing a maliciously crafted image may lead to arbitrary code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • Range: <=10.15.5 (fixed in 10.15.6)
  • Apple Inc./tvOSllm-fuzzy2 versions
    <=13.4.7 (fixed in 13.4.8)+ 1 more
    • (no CPE)range: <=13.4.7 (fixed in 13.4.8)
    • (no CPE)range: unspecified
  • Range: <=13.5.1 (fixed in 13.6)
  • Apple Inc./watchOSllm-fuzzy2 versions
    <=6.2.7 (fixed in 6.2.8)+ 1 more
    • (no CPE)range: <=6.2.7 (fixed in 6.2.8)
    • (no CPE)range: unspecified
  • Apple Inc./iOSllm-fuzzy2 versions
    <=13.5.1 (fixed in 13.6)+ 1 more
    • (no CPE)range: <=13.5.1 (fixed in 13.6)
    • (no CPE)range: unspecified
  • Apple Inc./iTunes for Windowsllm-fuzzy2 versions
    <=12.10.7 (fixed in 12.10.8)+ 1 more
    • (no CPE)range: <=12.10.7 (fixed in 12.10.8)
    • (no CPE)range: unspecified
  • Apple Inc./iCloud for Windowsllm-fuzzy3 versions
    <=11.2 (fixed in 11.3) or <=7.19 (fixed in 7.20)+ 2 more
    • (no CPE)range: <=11.2 (fixed in 11.3) or <=7.19 (fixed in 7.20)
    • (no CPE)range: unspecified
    • (no CPE)range: unspecified
  • Range: unspecified

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.