Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-16 | CVE-2020-9915 | Unspecified vulnerability in Apple products An access issue existed in Content Security Policy. | 6.5 |
| 2020-10-16 | CVE-2020-9913 | Unspecified vulnerability in Apple mac OS X This issue was addressed with improved data protection. | 5.5 |
| 2020-10-16 | CVE-2020-9909 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved bounds checking. | 5.9 |
| 2020-10-16 | CVE-2020-9894 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. | 4.3 |
| 2020-10-16 | CVE-2020-9885 | Insufficient Verification of Data Authenticity vulnerability in Apple products An issue existed in the handling of iMessage tapbacks. | 5.5 |
| 2020-09-30 | CVE-2020-24721 | An issue was discovered in the GAEN (aka Google/Apple Exposure Notifications) protocol through 2020-09-29, as used in COVID-19 applications on Android and iOS. | 5.7 |
| 2020-07-22 | CVE-2020-6514 | Information Exposure vulnerability in multiple products Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream. | 6.5 |
| 2020-06-27 | CVE-2020-15358 | Out-of-bounds Write vulnerability in multiple products In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. | 5.5 |
| 2020-06-15 | CVE-2020-14155 | Integer Overflow or Wraparound vulnerability in multiple products libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring. | 5.3 |
| 2020-06-09 | CVE-2020-9856 | Unspecified vulnerability in Apple mac OS X This issue was addressed with improved checks. | 5.3 |