VYPR

macOS Catalina

by Apple Inc.

CVEs (314)

  • CVE-2020-9812MedJun 9, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A local user may be able to read kernel memory.

  • CVE-2020-9811MedJun 9, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A local user may be able to read kernel memory.

  • CVE-2020-9809MedJun 9, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine kernel memory layout.

  • CVE-2020-9797MedJun 9, 2020
    risk 0.36cvss 5.5epss 0.01

    An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application's memory layout.

  • CVE-2020-3914MedApr 1, 2020
    risk 0.36cvss 5.5epss 0.01

    A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to read restricted memory.

  • CVE-2020-3889MedApr 1, 2020
    risk 0.36cvss 5.5epss 0.00

    A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to read arbitrary files.

  • CVE-2020-3881MedApr 1, 2020
    risk 0.36cvss 5.5epss 0.00

    A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to view sensitive user information.

  • CVE-2020-3875MedFeb 27, 2020
    risk 0.36cvss 5.5epss 0.01

    A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to read restricted memory.

  • CVE-2020-3872MedFeb 27, 2020
    risk 0.36cvss 5.5epss 0.01

    A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to read restricted memory.

  • CVE-2020-3866MedFeb 27, 2020
    risk 0.36cvss 5.5epss 0.01

    This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Catalina 10.15.3. Searching for and opening a file from an attacker controlled NFS mount may bypass Gatekeeper.

  • CVE-2020-3839MedFeb 27, 2020
    risk 0.36cvss 5.5epss 0.00

    A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Catalina 10.15.3. An application may be able to read restricted memory.

  • CVE-2020-3836MedFeb 27, 2020
    risk 0.36cvss 5.5epss 0.00

    An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout.

  • CVE-2019-8817MedDec 18, 2019
    risk 0.36cvss 5.5epss 0.01

    A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Catalina 10.15.1. An application may be able to read restricted memory.

  • CVE-2019-8798MedDec 18, 2019
    risk 0.36cvss 5.5epss 0.00

    A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with system privileges.

  • CVE-2019-8794MedDec 18, 2019
    risk 0.36cvss 5.5epss 0.01

    A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to read restricted memory.

  • CVE-2019-8770MedDec 18, 2019
    risk 0.36cvss 5.5epss 0.01

    The issue was addressed with improved permissions logic. This issue is fixed in macOS Catalina 10.15. A malicious application may be able to access recent documents.

  • CVE-2019-8705MedDec 18, 2019
    risk 0.36cvss 5.5epss 0.01

    A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15, tvOS 13. Processing a maliciously crafted movie may result in the disclosure of process memory.

  • CVE-2019-8858MedOct 27, 2020
    risk 0.35cvss 5.3epss 0.01

    A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. A user who shares their screen may not be able to end screen sharing.

  • CVE-2019-8796MedOct 27, 2020
    risk 0.35cvss 5.3epss 0.01

    A logic issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, iOS 12.4.3, watchOS 6.1, iOS 13.2 and iPadOS 13.2. AirDrop transfers may be unexpectedly accepted while in Everyone mode.

  • CVE-2019-8768MedDec 18, 2019
    risk 0.35cvss 5.3epss 0.02

    "Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Catalina 10.15. A user may be unable to delete browsing history items.

Page 15 of 16