Unrated severityNVD Advisory· Published Oct 16, 2020· Updated Aug 4, 2024

CVE-2020-9992

Description

This issue was addressed by encrypting communications over the network to devices running iOS 14, iPadOS 14, tvOS 14, and watchOS 7. This issue is fixed in iOS 14.0 and iPadOS 14.0, Xcode 12.0. An attacker in a privileged network position may be able to execute arbitrary code on a paired device during a debug session over the network.

Affected products

Apple Inc./Xcodev5
Range: unspecified
Apple Inc./iOScpe-rescue
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2020/Nov/20mitremailing-listx_refsource_FULLDISC
support.apple.com/HT211848mitrex_refsource_MISC
support.apple.com/HT211850mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000