Vulnerabilities > Apple > Ipados > 13.3

DATE CVE VULNERABILITY TITLE RISK
2020-02-27 CVE-2020-3859 Information Exposure vulnerability in Apple Ipados and Iphone OS
An inconsistent user interface issue was addressed with improved state management.
local
low complexity
apple CWE-200
2.1
2020-02-27 CVE-2020-3858 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Ipados and Iphone OS
A memory corruption issue was addressed with improved memory handling.
network
apple CWE-119
critical
9.3
2020-02-27 CVE-2020-3857 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
local
low complexity
apple CWE-119
7.2
2020-02-27 CVE-2020-3856 Improper Input Validation vulnerability in Apple products
A memory corruption issue was addressed with improved input validation.
network
apple CWE-20
critical
9.3
2020-02-27 CVE-2020-3853 Type Confusion vulnerability in Apple products
A type confusion issue was addressed with improved memory handling.
network
apple CWE-843
critical
9.3
2020-02-27 CVE-2020-3846 XML Injection (aka Blind XPath Injection) vulnerability in Apple products
A buffer overflow was addressed with improved size validation.
network
apple CWE-91
6.8
2020-02-27 CVE-2020-3844 Incorrect Authorization vulnerability in Apple Ipados and Iphone OS
This issue was addressed with improved checks.
local
low complexity
apple CWE-863
2.1
2020-02-27 CVE-2020-3842 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
apple CWE-119
critical
9.3
2020-02-27 CVE-2020-3841 Insufficiently Protected Credentials vulnerability in Apple Safari
The issue was addressed with improved UI handling.
network
apple CWE-522
4.3
2020-02-27 CVE-2020-3840 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An off by one issue existed in the handling of racoon configuration files.
network
apple CWE-119
6.8