Vulnerabilities > Apple > Iphone OS > 12.4.4

DATE CVE VULNERABILITY TITLE RISK
2020-10-27 CVE-2020-9961 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
local
low complexity
apple CWE-125
7.8
2020-10-27 CVE-2020-9941 Unspecified vulnerability in Apple products
This issue was addressed with improved checks.
network
low complexity
apple
7.5
2020-10-27 CVE-2020-9932 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved validation.
network
apple CWE-119
6.8
2020-10-27 CVE-2020-3880 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
network
apple CWE-125
critical
9.3
2020-10-27 CVE-2020-3864 Origin Validation Error vulnerability in multiple products
A logic issue was addressed with improved validation.
local
low complexity
apple redhat CWE-346
7.2
2020-10-27 CVE-2019-8901 Improper Verification of Cryptographic Signature vulnerability in Apple Ipados and Iphone OS
This issue was addressed by verifying host keys when connecting to a previously-known SSH server.
network
low complexity
apple CWE-347
4.0
2020-10-27 CVE-2019-8898 Insecure Storage of Sensitive Information vulnerability in Apple products
An information disclosure issue existed in the handling of the Storage Access API.
network
apple CWE-922
4.3
2020-10-27 CVE-2019-8857 Missing Authorization vulnerability in Apple Ipados and Iphone OS
The issue was addressed with improved validation when an iCloud Link is created.
local
low complexity
apple CWE-862
2.1
2020-10-27 CVE-2019-8856 Missing Authorization vulnerability in Apple products
An API issue existed in the handling of outgoing phone calls initiated with Siri.
network
apple CWE-862
4.3
2020-10-27 CVE-2019-8854 Unspecified vulnerability in Apple products
A user privacy issue was addressed by removing the broadcast MAC address.
network
low complexity
apple
5.0