Vulnerabilities > CVE-2020-27898 - Unchecked Return Value vulnerability in Apple Macos

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

apple

CWE-252

NVD

Published: 2020-12-08

Updated: 2021-03-11

Summary

A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1. An attacker may be able to bypass Managed Frame Protection.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple Macos - Apple Macos 1.0 Apple Macos 7.5.3 Apple Macos 7.6 Apple Macos 7.6.1 Apple Macos 8.0 Apple Macos 8.1 Apple Macos 8.5 Apple Macos 8.6 Apple Macos 9 Apple Macos 9.0 Apple Macos 10.15.7 Apple Macos 11.0	26

Common Weakness Enumeration (CWE)

CWE-252 - Unchecked Return Value

References

https://support.apple.com/en-us/HT211931
https://support.apple.com/kb/HT212011
http://seclists.org/fulldisclosure/2020/Dec/32
http://seclists.org/fulldisclosure/2020/Dec/26