CyberSec.Space Logo
CVEブラウザに戻る

CVE-2020-3909

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile8.30th
Published2020年4月1日
Last Modified2024年11月21日

Vulnerability Description

A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.

Affected Platforms (CPE)

📦
Apple

Icloud

< 7.18
📦
Apple

Icloud

>= 10.9 and < 10.9.3
📦
Apple

Itunes

< 12.10.5
💻
Apple

Ipados

< 13.4
💻
Apple

Iphone Os

< 13.4
💻
Apple

Mac Os X

< 10.15.4
💻
Apple

Tvos

< 13.4
💻
Apple

Watchos

< 6.2
📦
Oracle

Sun Zfs Storage Appliance Kit Software

= 8.8

References & Advisories

🔗 https://support.apple.com/HT211100
🔗 https://support.apple.com/HT211101
🔗 https://support.apple.com/HT211102
🔗 https://support.apple.com/HT211103
🔗 https://support.apple.com/HT211105
🔗 https://support.apple.com/HT211106
🔗 https://support.apple.com/HT211107
🔗 https://www.oracle.com/security-alerts/cpuoct2020.html

関連する脆弱性情報

CVE-2019-86009.8

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvO...

CVE-2019-87509.8

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in watchOS 6.1, iCloud for Wi...

CVE-2018-41479.8

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory c...

CVE-2019-87469.8

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud fo...