CVE-2020-3916
MEDIUM | Platform: iOS | Changelog
CVE Details
Description
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. Setting an alternate app icon may disclose a photo without needing permission to access photos.
CVSS 3.1 Score
| Metric | Value |
|---|---|
| Base Score | 5.3 (MEDIUM) |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
References
- Apple Security Advisory
- NVD Entry
- https://support.apple.com/HT211102 (Vendor Advisory)
- https://support.apple.com/HT211103 (Vendor Advisory)