CVE-2020-3909
CVE-2020-3909
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 3.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
01 abr 2020Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.
Produtos afetados
Apple · iCloud for WindowsApple · iCloud for Windows (Legacy)Apple · iOSApple · iTunes for WindowsApple · macOSApple · tvOSApple · watchOSQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://support.apple.com/HT211100https://support.apple.com/HT211101https://support.apple.com/HT211102https://support.apple.com/HT211103https://support.apple.com/HT211105https://support.apple.com/HT211106https://support.apple.com/HT211107https://www.oracle.com/security-alerts/cpuoct2020.html