Vulnerabilities > Apple > Watchos > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-10-16 CVE-2020-9968 Unspecified vulnerability in Apple products
A logic issue was addressed with improved restrictions.
local
low complexity
apple
5.5
2020-10-16 CVE-2020-9946 Improper Locking vulnerability in Apple Iphone OS
This issue was addressed with improved checks.
low complexity
apple CWE-667
6.8
2020-10-16 CVE-2020-9925 Cross-site Scripting vulnerability in Apple products
A logic issue was addressed with improved state management.
network
low complexity
apple CWE-79
6.1
2020-10-16 CVE-2020-9916 Unspecified vulnerability in Apple products
A URL Unicode encoding issue was addressed with improved state management.
network
low complexity
apple
5.3
2020-10-16 CVE-2020-9915 Unspecified vulnerability in Apple products
An access issue existed in Content Security Policy.
network
low complexity
apple
6.5
2020-10-16 CVE-2020-9909 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved bounds checking.
network
high complexity
apple CWE-125
5.9
2020-10-16 CVE-2020-9894 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
network
low complexity
apple CWE-125
4.3
2020-10-16 CVE-2020-9885 Insufficient Verification of Data Authenticity vulnerability in Apple products
An issue existed in the handling of iMessage tapbacks.
local
low complexity
apple CWE-345
5.5
2020-07-22 CVE-2020-6514 Information Exposure vulnerability in multiple products
Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.
6.5
2020-06-27 CVE-2020-15358 Out-of-bounds Write vulnerability in multiple products
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.
local
low complexity
sqlite canonical apple oracle siemens CWE-787
5.5