CVE-2020-27908

State: PUBLISHED · Published: 2021-04-02 · Updated: 2024-08-04 · Assigner: apple

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, watchOS 7.1, tvOS 14.2. Processing a maliciously crafted audio file may lead to arbitrary code execution.

CWE

(none)

Affected

Apple / watchOS — v=unspecified <7.1 [affected]
Apple / iOS and iPadOS — v=unspecified <14.2 [affected]
Apple / tvOS — v=unspecified <14.2 [affected]
Apple / macOS — v=unspecified <11.0 [affected]
Apple / macOS — v=unspecified <11.1 [affected]

CVSS

(none)

References

https://support.apple.com/en-us/HT211931 x_refsource_MISC
https://support.apple.com/en-us/HT211928 x_refsource_MISC
https://support.apple.com/en-us/HT211929 x_refsource_MISC
https://support.apple.com/en-us/HT211930 x_refsource_MISC
https://support.apple.com/en-us/HT212011 x_refsource_MISC

Source

cvelistV5-main/cves/2020/27xxx/CVE-2020-27908.json