CVE-2020-9994
Description
A path handling issue was addressed with improved validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to overwrite arbitrary files.
CWE
- (none)
Affected
- Apple / iOS — v=unspecified <iOS 13.5 and iPadOS 13.5 [affected]
- Apple / macOS — v=unspecified <macOS Catalina 10.15.5 [affected]
- Apple / tvOS — v=unspecified <tvOS 13.4.5 [affected]
- Apple / watchOS — v=unspecified <watchOS 6.2.5 [affected]
CVSS
- (none)
References
- https://support.apple.com/kb/HT211170 x_refsource_MISC
- https://support.apple.com/kb/HT211168 x_refsource_MISC
- https://support.apple.com/kb/HT211171 x_refsource_MISC
- https://support.apple.com/kb/HT211175 x_refsource_MISC
Source
cvelistV5-main/cves/2020/9xxx/CVE-2020-9994.json