CVE-2020-9803

Sažetak

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.

Reference

https://support.apple.com/HT211177
https://support.apple.com/HT211178
https://support.apple.com/HT211168
https://support.apple.com/HT211179
https://support.apple.com/HT211181
https://support.apple.com/HT211171
https://support.apple.com/HT211175

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

01-12-2021 - 02:37

Objavljeno

09-06-2020 - 17:15