CVE-2020-9787

CVE Database · CVE-2020-9787

CVE-2020-9787

· MEDIUMModified

CVSS v3.1

5.3

EPSS

1.26%

Published

Oct 22, 2020

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. Some websites may not have appeared in Safari Preferences.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected Products (5)

apple · ipad_os (up to 13.4)vulnerable

apple · iphone_os (up to 13.4)vulnerable

apple · mac_os_x (up to 10.15.4)vulnerable

apple · tvos (up to 13.4)vulnerable

apple · watchos (up to 6.2)vulnerable

References (8)

https://support.apple.com/kb/HT211100

Vendor Advisory

https://support.apple.com/kb/HT211101

Vendor Advisory

https://support.apple.com/kb/HT211102

Vendor Advisory

https://support.apple.com/kb/HT211103

Vendor Advisory

https://support.apple.com/kb/HT211100

Vendor Advisory

https://support.apple.com/kb/HT211101

Vendor Advisory

https://support.apple.com/kb/HT211102

Vendor Advisory

https://support.apple.com/kb/HT211103

KEV Catalog EPSS Scores Vendors All CVEs