CVE-2020-9842

State: PUBLISHED · Published: 2020-06-09 · Updated: 2024-08-04 · Assigner: apple

Description

An entitlement parsing issue was addressed with improved parsing. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application could interact with system processes to access private information and perform privileged actions.

CWE

(none)

Affected

Apple / iOS — v=unspecified <iOS 13.5 and iPadOS 13.5 [affected]
Apple / macOS — v=unspecified <macOS Catalina 10.15.5 [affected]
Apple / tvOS — v=unspecified <tvOS 13.4.5 [affected]
Apple / watchOS — v=unspecified <watchOS 6.2.5 [affected]

CVSS

(none)

References

https://support.apple.com/HT211168 x_refsource_MISC
https://support.apple.com/HT211170 x_refsource_MISC
https://support.apple.com/HT211171 x_refsource_MISC
https://support.apple.com/HT211175 x_refsource_MISC

Source

cvelistV5-main/cves/2020/9xxx/CVE-2020-9842.json