CVE-2020-9797
MEDIUM | Platform: watchOS | Changelog
CVE Details
Description
An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A malicious application may be able to determine another application’s memory layout.
CVSS 3.1 Score
| Metric | Value |
|---|---|
| Base Score | 5.5 (MEDIUM) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
References
- Apple Security Advisory
- NVD Entry
- https://support.apple.com/HT211168 (Release Notes, Vendor Advisory)
- https://support.apple.com/HT211170 (Release Notes, Vendor Advisory)
- https://support.apple.com/HT211171 (Release Notes, Vendor Advisory)
- https://support.apple.com/HT211175 (Release Notes, Vendor Advisory)