Vulnerability   
Search   
    Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.817130
Category:Mac OS X Local Security Checks
Title:Apple MacOSX Security Updates(HT211170) - 01
Summary:This host is installed with Apple Mac OS X; and is prone to multiple vulnerabilities.
Description:Summary:
This host is installed with Apple Mac OS X
and is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws exists due to,

- Multiple out-of-bounds read errors.

- Insufficient input sanitization.

- An integer overflow.

- Insufficient validation of symlinks.

- A memory corruption issue.

- A double free error.

- A logic issue.

- An error in sandbox restrictions.

Vulnerability Impact:
Successful exploitation will allow an attacker
to execute arbitrary code, execute arbitrary javascript code, gain access to
sensitive information, gain elevated privileges, conduct a DoS attck, modify
restricted network settings and bypass security restrictions.

Affected Software/OS:
Apple Mac OS X versions 10.15.x through 10.15.4

Solution:
Upgrade to Apple Mac OS X 10.15.5 or later.
Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-9815
https://support.apple.com/HT211168
https://support.apple.com/HT211170
https://support.apple.com/HT211171
https://support.apple.com/HT211175
https://www.zerodayinitiative.com/advisories/ZDI-20-823/
Common Vulnerability Exposure (CVE) ID: CVE-2020-9788
Common Vulnerability Exposure (CVE) ID: CVE-2020-9831
Common Vulnerability Exposure (CVE) ID: CVE-2020-9852
Common Vulnerability Exposure (CVE) ID: CVE-2020-9856
http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-9855
Common Vulnerability Exposure (CVE) ID: CVE-2020-3882
Common Vulnerability Exposure (CVE) ID: CVE-2020-9793
Common Vulnerability Exposure (CVE) ID: CVE-2020-9844
http://packetstormsecurity.com/files/158225/iOS-macOS-Wifi-Proximity-Kernel-Double-Free.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-9804
Common Vulnerability Exposure (CVE) ID: CVE-2020-9791
Common Vulnerability Exposure (CVE) ID: CVE-2020-9792
Common Vulnerability Exposure (CVE) ID: CVE-2020-9827
Common Vulnerability Exposure (CVE) ID: CVE-2020-9794
https://support.apple.com/HT211178
https://support.apple.com/HT211179
https://support.apple.com/HT211181
Common Vulnerability Exposure (CVE) ID: CVE-2020-9824
Common Vulnerability Exposure (CVE) ID: CVE-2020-9825
Common Vulnerability Exposure (CVE) ID: CVE-2020-9851
Common Vulnerability Exposure (CVE) ID: CVE-2020-3878
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.