← volver
CVE-2020-27912

CVE-2020-27912

EPSS 1.8%
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 1.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
08 dic 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Windows. Processing a maliciously crafted image may lead to arbitrary code execution.
Productos afectados
Apple · iOS and iPadOSApple · macOSApple · tvOSApple · watchOS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2020/Dec/26http://seclists.org/fulldisclosure/2020/Dec/32https://support.apple.com/en-us/HT211928https://support.apple.com/en-us/HT211929https://support.apple.com/en-us/HT211930https://support.apple.com/en-us/HT211931https://support.apple.com/en-us/HT211933https://support.apple.com/en-us/HT211935https://support.apple.com/kb/HT212011