Buffer Overflow Vulnerability in Apple Products
CVE-2020-3910

9.8CRITICAL

Key Information:

Vendor

Apple
Status
iOS
Mac OS
TV OS
Watch OS
Vendor
CVE Published:
1 April 2020

What is CVE-2020-3910?

A buffer overflow vulnerability affecting multiple Apple platforms was addressed through enhancements in size validation. This flaw could potentially allow unauthorized actions if successfully exploited. The issue was identified in various products including iOS, iPadOS, macOS, tvOS, watchOS, iTunes, and iCloud, underscoring the importance of timely updates to maintain security.

Affected Version(s)

iCloud for Windows < unspecified

iCloud for Windows (Legacy) < unspecified

iOS < unspecified

References

https://support.apple.com/HT211100
x_refsource_MISC
https://support.apple.com/HT211102
x_refsource_MISC
https://support.apple.com/HT211101
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.