Back to CVE Browser

CVE-2020-3910

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.1160%

EPSS Percentile6.61th

PublishedApr 1, 2020

Last ModifiedNov 21, 2024

Vulnerability Description

A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.

Affected Platforms (CPE)

📦

Apple

Icloud

< 10.9.3

📦

Apple

Itunes

< 12.10.5

💻

Apple

Ipados

< 13.4

💻

Apple

Iphone Os

< 13.4

💻

Apple

Mac Os X

< 10.15.4

💻

Apple

Tvos

< 13.4

💻

Apple

Watchos

< 6.2

References & Advisories

🔗 https://support.apple.com/HT211100

🔗 https://support.apple.com/HT211101

🔗 https://support.apple.com/HT211102

🔗 https://support.apple.com/HT211103

🔗 https://support.apple.com/HT211105

🔗 https://support.apple.com/HT211106

🔗 https://support.apple.com/HT211107

🔗 https://support.apple.com/HT211100

Related Vulnerabilities

CVE-2019-86009.8

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvO...

CVE-2019-87509.8

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in watchOS 6.1, iCloud for Wi...

CVE-2018-41479.8

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory c...

CVE-2019-87469.8

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud fo...