Vulnerabilities > Apple > Watchos

DATE CVE VULNERABILITY TITLE RISK
2020-10-16 CVE-2020-9865 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed by removing the vulnerable code.
local
low complexity
apple CWE-787
8.6
2020-10-16 CVE-2020-9862 Improper Encoding or Escaping of Output vulnerability in Apple products
A command injection issue existed in Web Inspector.
local
low complexity
apple CWE-116
7.8
2020-07-22 CVE-2020-6514 Information Exposure vulnerability in multiple products
Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.
6.5
2020-06-27 CVE-2020-15358 Out-of-bounds Write vulnerability in multiple products
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.
local
low complexity
sqlite canonical apple oracle siemens CWE-787
5.5
2020-06-09 CVE-2020-9852 Integer Overflow or Wraparound vulnerability in Apple products
An integer overflow was addressed through improved input validation.
local
low complexity
apple CWE-190
7.8
2020-06-09 CVE-2020-9850 Unspecified vulnerability in Apple products
A logic issue was addressed with improved restrictions.
network
low complexity
apple
critical
9.8
2020-06-09 CVE-2020-9843 Cross-site Scripting vulnerability in Apple products
An input validation issue was addressed with improved input validation.
network
low complexity
apple CWE-79
7.1
2020-06-09 CVE-2020-9842 Unspecified vulnerability in Apple products
An entitlement parsing issue was addressed with improved parsing.
local
low complexity
apple
7.1
2020-06-09 CVE-2020-9839 Race Condition vulnerability in Apple products
A race condition was addressed with improved state handling.
local
high complexity
apple CWE-362
7.0
2020-06-09 CVE-2020-9829 Improper Input Validation vulnerability in Apple products
A validation issue was addressed with improved input sanitization.
network
low complexity
apple CWE-20
6.5