13.3.1

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-01	CVE-2020-3910	Classic Buffer Overflow vulnerability in Apple products A buffer overflow was addressed with improved size validation. network low complexity apple CWE-120 critical	9.8
2020-04-01	CVE-2020-3909	Classic Buffer Overflow vulnerability in multiple products A buffer overflow was addressed with improved bounds checking. network low complexity apple oracle CWE-120 critical	9.8
2020-02-27	CVE-2020-3878	Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. local low complexity apple CWE-125	7.8
2020-02-24	CVE-2019-20044	Improper Check for Dropped Privileges vulnerability in multiple products In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. local low complexity zsh fedoraproject debian apple CWE-273	7.8
2019-12-11	CVE-2019-14899	A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. low complexity freebsd linux openbsd apple	7.4