Vulnerabilities > Apple > Iphone OS > 12.4.4

DATE CVE VULNERABILITY TITLE RISK
2020-12-08 CVE-2020-10013 Unspecified vulnerability in Apple products
A logic issue was addressed with improved state management.
network
apple
critical
9.3
2020-12-08 CVE-2020-10011 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved bounds checking.
local
low complexity
apple CWE-125
7.8
2020-12-08 CVE-2020-10010 Path Traversal vulnerability in Apple products
A path handling issue was addressed with improved validation.
local
low complexity
apple CWE-22
7.8
2020-12-08 CVE-2020-10004 Unspecified vulnerability in Apple products
A logic issue was addressed with improved state management.
local
low complexity
apple
7.8
2020-12-08 CVE-2020-10003 Link Following vulnerability in Apple products
An issue existed within the path validation logic for symlinks.
local
low complexity
apple CWE-59
7.8
2020-12-08 CVE-2020-10002 Unspecified vulnerability in Apple products
A logic issue was addressed with improved state management.
local
low complexity
apple
5.5
2020-11-13 CVE-2020-6147 Out-of-bounds Write vulnerability in multiple products
A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files.
network
pixar apple CWE-787
6.8
2020-11-03 CVE-2020-15969 Use After Free vulnerability in multiple products
Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject opensuse apple CWE-416
8.8
2020-10-27 CVE-2020-9979 Unspecified vulnerability in Apple Iphone OS
A trust issue was addressed by removing a legacy API.
local
low complexity
apple
2.1
2020-10-27 CVE-2020-9973 Out-of-bounds Read vulnerability in Apple Iphone OS
An out-of-bounds read was addressed with improved bounds checking.
network
apple CWE-125
critical
9.3