CVE-2020-9797

MEDIUM | Platform: iOS | Changelog

CVE Details

Description

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application’s memory layout.

CVSS 3.1 Score

Metric	Value
Base Score	5.5 (MEDIUM)
Vector	`CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N`

References

Apple Security Advisory
NVD Entry
https://support.apple.com/HT211168 (Release Notes, Vendor Advisory)
https://support.apple.com/HT211170 (Release Notes, Vendor Advisory)
https://support.apple.com/HT211171 (Release Notes, Vendor Advisory)
https://support.apple.com/HT211175 (Release Notes, Vendor Advisory)