Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, iCloud for Windows 12.0, watchOS 7.2. Processing a maliciously crafted image may lead to arbitrary code execution.
Related CPE's
o
apple
mac_os_x
References
https://support.apple.com/en-us/HT212003
https://support.apple.com/en-us/HT212005
https://support.apple.com/en-us/HT212009
https://support.apple.com/en-us/HT212011
https://support.apple.com/en-us/HT212145
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.8 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2021-04-02T18:15:17.653
4 years agoLast modified
2021-04-07T18:22:09.530
4 years ago