Vulnerabilities > Apple > Ipados > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-16 | CVE-2020-9946 | Improper Locking vulnerability in Apple Iphone OS This issue was addressed with improved checks. | 6.8 |
| 2020-10-16 | CVE-2020-9934 | Unspecified vulnerability in Apple mac OS X An issue existed in the handling of environment variables. | 5.5 |
| 2020-10-16 | CVE-2020-9925 | Cross-site Scripting vulnerability in Apple products A logic issue was addressed with improved state management. | 6.1 |
| 2020-10-16 | CVE-2020-9916 | Unspecified vulnerability in Apple products A URL Unicode encoding issue was addressed with improved state management. | 5.3 |
| 2020-10-16 | CVE-2020-9915 | Unspecified vulnerability in Apple products An access issue existed in Content Security Policy. | 6.5 |
| 2020-10-16 | CVE-2020-9909 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved bounds checking. | 5.9 |
| 2020-10-16 | CVE-2020-9894 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 4.3 |
| 2020-10-16 | CVE-2020-9885 | Insufficient Verification of Data Authenticity vulnerability in Apple products An issue existed in the handling of iMessage tapbacks. | 5.5 |
| 2020-07-22 | CVE-2020-6514 | Information Exposure vulnerability in multiple products Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream. | 6.5 |
| 2020-06-27 | CVE-2020-15358 | Out-of-bounds Write vulnerability in multiple products In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. | 5.5 |