CVE-2020-3896
CVE-2020-3896
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
23 Dec 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to overwrite arbitrary files.
Affected products
Apple · macOSReferences
https://support.apple.com/en-us/HT211100