13.1.1

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-27	CVE-2020-3846	XML Injection (aka Blind XPath Injection) vulnerability in Apple products A buffer overflow was addressed with improved size validation. network apple CWE-91	6.8
2020-02-27	CVE-2020-3844	Incorrect Authorization vulnerability in Apple Ipados and Iphone OS This issue was addressed with improved checks. local low complexity apple CWE-863	2.1
2020-02-27	CVE-2020-3842	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. network apple CWE-119 critical	9.3
2020-02-27	CVE-2020-3841	Insufficiently Protected Credentials vulnerability in Apple Safari The issue was addressed with improved UI handling. network apple CWE-522	4.3
2020-02-27	CVE-2020-3840	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products An off by one issue existed in the handling of racoon configuration files. network apple CWE-119	6.8
2020-02-27	CVE-2020-3838	Incorrect Default Permissions vulnerability in Apple products The issue was addressed with improved permissions logic. network apple CWE-276 critical	9.3
2020-02-27	CVE-2020-3837	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products A memory corruption issue was addressed with improved memory handling. network apple CWE-119 critical	9.3
2020-02-27	CVE-2020-3836	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products An access issue was addressed with improved memory management. local low complexity apple CWE-119	2.1
2020-02-27	CVE-2020-3831	Race Condition vulnerability in Apple Ipados and Iphone OS A race condition was addressed with improved locking. network high complexity apple CWE-362	7.6
2020-02-27	CVE-2020-3829	Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved bounds checking. network apple CWE-125 critical	9.3