Vulnerabilities > CVE-2020-27952 - Out-of-bounds Write vulnerability in Apple mac OS X and Macos

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

apple

CWE-787

NVD

Published: 2021-04-02

Updated: 2021-04-08

Summary

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.1. Processing a maliciously crafted font file may lead to arbitrary code execution.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple MAC OS X 10.14 Apple MAC OS X 10.14.0 Apple MAC OS X 10.14.1 Apple MAC OS X 10.14.2 Apple MAC OS X 10.14.3 Apple MAC OS X 10.14.4 Apple MAC OS X 10.14.5 Apple MAC OS X 10.14.6 Apple MAC OS X 10.15 Apple MAC OS X 10.15.1 Apple MAC OS X 10.15.2 Apple MAC OS X 10.15.3 Apple MAC OS X 10.15.4 Apple MAC OS X 10.15.5 Apple MAC OS X 10.15.6 Apple MAC OS X 10.15.7 Apple Macos 11.0 Apple Macos 11.0.1	32

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References