github - ghsa-4jv4-fxjp-hmm7

ghsa-4jv4-fxjp-hmm7

Vulnerability from github

Published

2022-05-24 17:19

Modified

2022-05-24 17:19

Severity

9.8 (Critical) - CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. A remote attacker may be able to cause arbitrary code execution.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2020-9850"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2020-06-09T17:15:00Z",
    "severity": "HIGH"
  },
  "details": "A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. A remote attacker may be able to cause arbitrary code execution.",
  "id": "GHSA-4jv4-fxjp-hmm7",
  "modified": "2022-05-24T17:19:46Z",
  "published": "2022-05-24T17:19:46Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-9850"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GER2ATKZXDHM7FFYJH67ZPNZZX5VOUVM"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JDBXQ2XA6X4DP4YTPXBOMKSLWUED2KAR"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202007-11"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211168"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211171"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211175"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211177"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211178"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211179"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/HT211181"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/4422-1"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2020/dsa-4724"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00074.html"
    },
    {
      "type": "WEB",
      "url": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2020/07/10/1"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

cve-2020-9850

Vulnerability from cvelistv5

Published

2020-06-09 16:18

Modified

2024-08-04 10:43

Severity

Summary

References

URL	Tags
https://support.apple.com/HT211168	x_refsource_MISC
https://support.apple.com/HT211171	x_refsource_MISC
https://support.apple.com/HT211175	x_refsource_MISC
https://support.apple.com/HT211178	x_refsource_MISC
https://support.apple.com/HT211179	x_refsource_MISC
https://support.apple.com/HT211181	x_refsource_MISC
https://support.apple.com/HT211177	x_refsource_MISC

Impacted products

Vendor	Product
Apple	iOS
Apple	tvOS
Apple	watchOS
Apple	Safari
Apple	iTunes for Windows
Apple	iCloud for Windows
Apple	iCloud for Windows (Legacy)

Show details on NVD website