Vulnerabilities > CVE-2020-9906 - Out-of-bounds Write vulnerability in Apple products

CVSS 9.1 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

apple

CWE-787

critical

NVD

Published: 2020-10-22

Updated: 2023-01-09

Summary

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, watchOS 6.2.8. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple Iphone OS - Apple Iphone OS 1.0.0 Apple Iphone OS 1.0.1 Apple Iphone OS 1.0.2 Apple Iphone OS 1.1.0 Apple Iphone OS 1.1.1 Apple Iphone OS 1.1.2 Apple Iphone OS 1.1.3 Apple Iphone OS 1.1.4 Apple Iphone OS 1.1.5 Apple Iphone OS 2.0 Apple Iphone OS 2.0.0 Apple Iphone OS 2.0.1 Apple Iphone OS 2.0.2 Apple Iphone OS 2.1 Apple Iphone OS 2.1.1 Apple Iphone OS 2.2 Apple Iphone OS 2.2.1 Apple Iphone OS 3.0 Apple Iphone OS 3.0.1 Apple Iphone OS 3.1 Apple Iphone OS 3.1.1 Apple Iphone OS 3.1.2 Apple Iphone OS 3.1.3 Apple Iphone OS 3.2 Apple Iphone OS 3.2.1 Apple Iphone OS 3.2.2 Apple Iphone OS 4.0 Apple Iphone OS 4.0.1 Apple Iphone OS 4.0.2 Apple Iphone OS 4.1 Apple Iphone OS 4.2 Apple Iphone OS 4.2.1 Apple Iphone OS 4.2.5 Apple Iphone OS 4.2.6 Apple Iphone OS 4.2.7 Apple Iphone OS 4.2.8 Apple Iphone OS 4.2.9 Apple Iphone OS 4.2.10 Apple Iphone OS 4.3.0 Apple Iphone OS 4.3.1 Apple Iphone OS 4.3.2 Apple Iphone OS 4.3.3 Apple Iphone OS 4.3.4 Apple Iphone OS 4.3.5 Apple Iphone OS 5.0 Apple Iphone OS 5.0.1 Apple Iphone OS 5.1 Apple Iphone OS 5.1.1 Apple Iphone OS 6.0 Apple Iphone OS 6.0.1 Apple Iphone OS 6.0.2 Apple Iphone OS 6.1 Apple Iphone OS 6.1.2 Apple Iphone OS 6.1.3 Apple Iphone OS 6.1.4 Apple Iphone OS 6.1.5 Apple Iphone OS 6.1.6 Apple Iphone OS 7.0 Apple Iphone OS 7.0.1 Apple Iphone OS 7.0.2 Apple Iphone OS 7.0.3 Apple Iphone OS 7.0.4 Apple Iphone OS 7.0.5 Apple Iphone OS 7.0.6 Apple Iphone OS 7.1 Apple Iphone OS 7.1.1 Apple Iphone OS 7.1.2 Apple Iphone OS 8.0 Apple Iphone OS 8.0.1 Apple Iphone OS 8.0.2 Apple Iphone OS 8.1 Apple Iphone OS 8.1.1 Apple Iphone OS 8.1.2 Apple Iphone OS 8.1.3 Apple Iphone OS 8.2 Apple Iphone OS 8.3 Apple Iphone OS 8.4 Apple Iphone OS 8.4.1 Apple Iphone OS 9.0 Apple Iphone OS 9.0.1 Apple Iphone OS 9.0.2 Apple Iphone OS 9.1 Apple Iphone OS 9.2 Apple Iphone OS 9.2.1 Apple Iphone OS 9.3 Apple Iphone OS 9.3.1 Apple Iphone OS 9.3.2 Apple Iphone OS 9.3.3 Apple Iphone OS 9.3.4 Apple Iphone OS 9.3.5 Apple Iphone OS 9.3.6 Apple Iphone OS 10.0 Apple Iphone OS 10.0.1 Apple Iphone OS 10.0.2 Apple Iphone OS 10.0.3 Apple Iphone OS 10.1 Apple Iphone OS 10.1.1 Apple Iphone OS 10.2 Apple Iphone OS 10.2.1 Apple Iphone OS 10.3 Apple Iphone OS 10.3.1 Apple Iphone OS 10.3.2 Apple Iphone OS 10.3.3 Apple Iphone OS 10.3.4 Apple Iphone OS 11 Apple Iphone OS 11.0 Apple Iphone OS 11.0.1 Apple Iphone OS 11.0.2 Apple Iphone OS 11.0.3 Apple Iphone OS 11.1 Apple Iphone OS 11.1.1 Apple Iphone OS 11.1.2 Apple Iphone OS 11.2 Apple Iphone OS 11.2.1 Apple Iphone OS 11.2.2 Apple Iphone OS 11.2.5 Apple Iphone OS 11.2.6 Apple Iphone OS 11.3 Apple Iphone OS 11.3.1 Apple Iphone OS 11.4 Apple Iphone OS 11.4.1 Apple Iphone OS 12.0 Apple Iphone OS 12.0.0 Apple Iphone OS 12.0.1 Apple Iphone OS 12.1 Apple Iphone OS 12.1.1 Apple Iphone OS 12.1.2 Apple Iphone OS 12.1.3 Apple Iphone OS 12.1.4 Apple Iphone OS 12.2 Apple Iphone OS 12.3 Apple Iphone OS 12.3.1 Apple Iphone OS 12.3.2 Apple Iphone OS 12.4 Apple Iphone OS 12.4.1 Apple Iphone OS 12.4.3 Apple Iphone OS 12.4.4 Apple Iphone OS 12.4.7 Apple Iphone OS 12.4.9 Apple Iphone OS 12.5.2 Apple Iphone OS 12.5.3 Apple Iphone OS 12.5.4 Apple Iphone OS 12.5.5 Apple Iphone OS 13.0 Apple Iphone OS 13.1 Apple Iphone OS 13.1.1 Apple Iphone OS 13.1.2 Apple Iphone OS 13.1.3 Apple Iphone OS 13.2 Apple Iphone OS 13.2.2 Apple Iphone OS 13.2.3 Apple Iphone OS 13.3 Apple Iphone OS 13.3.1 Apple Iphone OS 13.4 Apple Iphone OS 13.5 Apple Iphone OS 13.5.1 Apple Watchos - Apple Watchos 1.0 Apple Watchos 1.0.1 Apple Watchos 2.0 Apple Watchos 2.0.1 Apple Watchos 2.1 Apple Watchos 2.2 Apple Watchos 2.2.0 Apple Watchos 2.2.1 Apple Watchos 2.2.2 Apple Watchos 3.0 Apple Watchos 3.1 Apple Watchos 3.1.1 Apple Watchos 3.1.3 Apple Watchos 3.2 Apple Watchos 3.2.2 Apple Watchos 3.2.3 Apple Watchos 4 Apple Watchos 4.0 Apple Watchos 4.0.1 Apple Watchos 4.1 Apple Watchos 4.2 Apple Watchos 4.2.3 Apple Watchos 4.3 Apple Watchos 4.3.1 Apple Watchos 4.3.2 Apple Watchos 5.0 Apple Watchos 5.0.1 Apple Watchos 5.1 Apple Watchos 5.1.1 Apple Watchos 5.1.2 Apple Watchos 5.1.3 Apple Watchos 5.2 Apple Watchos 5.2.1 Apple Watchos 5.3 Apple Watchos 5.3.4 Apple Watchos 5.3.7 Apple Watchos 5.3.9 Apple Watchos 6.0 Apple Watchos 6.0.0 Apple Watchos 6.0.1 Apple Watchos 6.1 Apple Watchos 6.1.1 Apple Watchos 6.1.2 Apple Watchos 6.1.3 Apple Watchos 6.2 Apple Watchos 6.2.5 Apple Watchos 6.2.6 Apple Ipados - Apple Ipados 12.1 Apple Ipados 12.1.1 Apple Ipados 12.1.3 Apple Ipados 12.2 Apple Ipados 12.3 Apple Ipados 12.4 Apple Ipados 13.1 Apple Ipados 13.1.1 Apple Ipados 13.1.2 Apple Ipados 13.1.3 Apple Ipados 13.2 Apple Ipados 13.2.2 Apple Ipados 13.2.3 Apple Ipados 13.3 Apple Ipados 13.3.1 Apple Ipados 13.4 Apple Ipados 13.5 Apple Ipados 13.5.1 Apple MAC OS X 10.14 Apple MAC OS X 10.14.0 Apple MAC OS X 10.14.1 Apple MAC OS X 10.14.2 Apple MAC OS X 10.14.3 Apple MAC OS X 10.14.4 Apple MAC OS X 10.14.5 Apple MAC OS X 10.14.6 Apple MAC OS X 10.15 Apple MAC OS X 10.15.1 Apple MAC OS X 10.15.2 Apple MAC OS X 10.15.3 Apple MAC OS X 10.15.4 Apple MAC OS X 10.15.5 Apple MAC OS X 10.13.6 Apple MAC OS X 10.13 Apple MAC OS X 10.13.0 Apple MAC OS X 10.13.1 Apple MAC OS X 10.13.2 Apple MAC OS X 10.13.3 Apple MAC OS X 10.13.4 Apple MAC OS X 10.13.5	324

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References