← volver
CVE-2020-27910

CVE-2020-27910

EPSS 1.6%
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 1.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
08 dic 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted audio file may lead to arbitrary code execution.
Productos afectados
Apple · iOS and iPadOSApple · macOSApple · tvOSApple · watchOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2020/Dec/26http://seclists.org/fulldisclosure/2020/Dec/32https://support.apple.com/en-us/HT211928https://support.apple.com/en-us/HT211929https://support.apple.com/en-us/HT211930https://support.apple.com/en-us/HT211931https://support.apple.com/kb/HT212011