13.4.8

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-08	CVE-2020-10003	Link Following vulnerability in Apple products An issue existed within the path validation logic for symlinks. local low complexity apple CWE-59	7.8
2020-12-08	CVE-2020-10002	Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. local low complexity apple	5.5
2020-11-03	CVE-2020-15969	Use After Free vulnerability in multiple products Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian fedoraproject opensuse apple CWE-416	8.8
2020-10-27	CVE-2020-9979	Unspecified vulnerability in Apple Iphone OS A trust issue was addressed by removing a legacy API. local low complexity apple	2.1
2020-10-27	CVE-2020-9961	Out-of-bounds Read vulnerability in Apple products An out-of-bounds read was addressed with improved input validation. local low complexity apple CWE-125	7.8
2020-10-22	CVE-2020-9876	Out-of-bounds Write vulnerability in Apple products An out-of-bounds write issue was addressed with improved bounds checking. local low complexity apple CWE-787	7.8
2020-10-16	CVE-2020-9976	Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. local low complexity apple	5.5
2020-10-16	CVE-2020-9968	Unspecified vulnerability in Apple products A logic issue was addressed with improved restrictions. local low complexity apple	5.5
2020-10-16	CVE-2020-9952	Cross-site Scripting vulnerability in multiple products An input validation issue was addressed with improved input validation. network low complexity apple webkit CWE-79	7.1
2020-10-16	CVE-2020-9951	Use After Free vulnerability in multiple products A use after free issue was addressed with improved memory management. network apple webkit debian CWE-416	6.8