English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.826550
Category:Mac OS X Local Security Checks
Title:Apple Mac OS X Security Update (HT211931)
Summary:Apple Mac OS X is prone to multiple; vulnerabilities.
Description:Summary:
Apple Mac OS X is prone to multiple
vulnerabilities.

Vulnerability Insight:
Multiple flaws exist due to,

- Multiple integer overflows.

- Multiple out-of-bounds read issues.

- Multiple out-of-bounds write issues.

For more information about the vulnerabilities refer to Reference links.

Vulnerability Impact:
Successful exploitation of these
vulnerabilities allow remote attackers to execute arbitrary code, bypass
security restrictions, disclose sensitive information and cause a denial of
service on affected system.

Affected Software/OS:
Apple Mac OS X Big Sur prior to
version 11.0.1.

Solution:
Upgrade to macOS Big Sur 11.0.1 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-14899
20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6
http://seclists.org/fulldisclosure/2020/Jul/23
20200717 APPLE-SA-2020-07-15-2 macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra
http://seclists.org/fulldisclosure/2020/Jul/24
20200717 APPLE-SA-2020-07-15-3 tvOS 13.4.8
http://seclists.org/fulldisclosure/2020/Jul/25
20201115 APPLE-SA-2020-11-13-3 Additional information for APPLE-SA-2020-09-16-1 iOS 14.0 and iPadOS 14.0
http://seclists.org/fulldisclosure/2020/Nov/20
20201215 APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 11.0.1
http://seclists.org/fulldisclosure/2020/Dec/32
[oss-security] 20200813 Blind in/on-path attacks against VPN-tunneled connections (CVE-2019-14899 follow-up)
http://www.openwall.com/lists/oss-security/2020/08/13/2
[oss-security] 20201007 Re: [CVE-2019-14899] Inferring and hijacking VPN-tunneled TCP connections.
http://www.openwall.com/lists/oss-security/2020/10/07/3
[oss-security] 20210704 Re: Blind in/on-path attacks against VPN-tunneled connections (CVE-2019-14899 follow-up)
http://www.openwall.com/lists/oss-security/2021/07/05/1
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14899
https://openvpn.net/security-advisory/no-flaws-found-in-openvpn-software/
https://support.apple.com/kb/HT211288
https://support.apple.com/kb/HT211289
https://support.apple.com/kb/HT211290
https://support.apple.com/kb/HT211850
https://support.apple.com/kb/HT211931
Common Vulnerability Exposure (CVE) ID: CVE-2019-20838
http://seclists.org/fulldisclosure/2021/Feb/14
https://bugs.gentoo.org/717920
https://www.pcre.org/original/changelog.txt
https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
Common Vulnerability Exposure (CVE) ID: CVE-2020-10002
http://seclists.org/fulldisclosure/2020/Dec/26
https://support.apple.com/en-us/HT211928
https://support.apple.com/en-us/HT211929
https://support.apple.com/en-us/HT211930
https://support.apple.com/en-us/HT211931
https://support.apple.com/en-us/HT211933
https://support.apple.com/en-us/HT211935
Common Vulnerability Exposure (CVE) ID: CVE-2020-10003
Common Vulnerability Exposure (CVE) ID: CVE-2020-10004
Common Vulnerability Exposure (CVE) ID: CVE-2020-10005
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1246
Common Vulnerability Exposure (CVE) ID: CVE-2020-10006
Common Vulnerability Exposure (CVE) ID: CVE-2020-10007
Common Vulnerability Exposure (CVE) ID: CVE-2020-10008
Common Vulnerability Exposure (CVE) ID: CVE-2020-10009
Common Vulnerability Exposure (CVE) ID: CVE-2020-10010
Common Vulnerability Exposure (CVE) ID: CVE-2020-10011
https://support.apple.com/en-us/HT211849
Common Vulnerability Exposure (CVE) ID: CVE-2020-10012
Common Vulnerability Exposure (CVE) ID: CVE-2020-10014
Common Vulnerability Exposure (CVE) ID: CVE-2020-10015
https://support.apple.com/en-us/HT212011
Common Vulnerability Exposure (CVE) ID: CVE-2020-10016
Common Vulnerability Exposure (CVE) ID: CVE-2020-10017
Common Vulnerability Exposure (CVE) ID: CVE-2020-10663
Debian Security Information: DSA-4721 (Google Search)
https://www.debian.org/security/2020/dsa-4721
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7QL6MJD2BO4IRJ5CJFNMCDYMQQFT24BJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F4TNVTT66VPRMX5UZYSDGSVRXKKDDDU5/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NK2PBXWMFRUD7U7Q7LHV4KYLYID77RI4/
https://lists.debian.org/debian-lts-announce/2020/04/msg00030.html
https://lists.apache.org/thread.html/r8d2e174230f6d26e16c007546e804c343f1f68956f526daaafa4aaae@%3Cdev.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/rd9b9cc843f5cf5b532bdad9e87a817967efcf52b917e8c43b6df4cc7@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/ree3abcd33c06ee95ab59faa1751198a1186d8941ddc2c2562c12966c@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/rb023d54a46da1ac0d8969097f5fecc79636b07d3b80db7b818a5c55c@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/rb2b981912446a74e14fe6076c4b7c7d8502727ea0718e6a65a9b1be5@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/r5f17bfca1d6e7f4b33ae978725b2fd62a9f1b3111696eafa9add802d@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/rec8bb4d637b04575da41cfae49118e108e95d43bfac39b7b698ee4db@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/r3b04f4e99a19613f88ae088aa18cd271231a3c79dfff8f5efa8cda61@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/r37c0e1807da7ff2bdd028bbe296465a6bbb99e2320dbe661d5d8b33b@%3Cissues.zookeeper.apache.org%3E
SuSE Security Announcement: openSUSE-SU-2020:0586 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00004.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-13434
https://security.netapp.com/advisory/ntap-20200528-0004/
https://support.apple.com/kb/HT211843
https://support.apple.com/kb/HT211844
https://support.apple.com/kb/HT211935
https://support.apple.com/kb/HT211952
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/
FreeBSD Security Advisory: FreeBSD-SA-20:22
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:22.sqlite.asc
http://seclists.org/fulldisclosure/2020/Nov/19
http://seclists.org/fulldisclosure/2020/Nov/22
https://security.gentoo.org/glsa/202007-26
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpuapr2022.html
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.sqlite.org/src/info/23439ea582241138
https://www.sqlite.org/src/info/d08d3405878d394e
https://lists.debian.org/debian-lts-announce/2020/05/msg00024.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00037.html
https://usn.ubuntu.com/4394-1/
Common Vulnerability Exposure (CVE) ID: CVE-2020-13435
https://www.sqlite.org/src/info/7a5279a25c57adf1
Common Vulnerability Exposure (CVE) ID: CVE-2020-13524
https://support.apple.com/kb/HT212011
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1125
Common Vulnerability Exposure (CVE) ID: CVE-2020-13630
https://security.netapp.com/advisory/ntap-20200608-0002/
https://bugs.chromium.org/p/chromium/issues/detail?id=1080459
https://sqlite.org/src/info/0d69f76f0865f962
https://www.oracle.com/security-alerts/cpuoct2020.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-13631
https://sqlite.org/src/info/eca0ba2cf4c0fdf7
https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E
Common Vulnerability Exposure (CVE) ID: CVE-2020-14155
https://about.gitlab.com/releases/2020/07/01/security-release-13-1-2-release/
https://support.apple.com/kb/HT212147
Common Vulnerability Exposure (CVE) ID: CVE-2020-15358
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
https://security.netapp.com/advisory/ntap-20200709-0001/
https://support.apple.com/kb/HT211847
https://www.oracle.com/security-alerts/cpujan2021.html
https://www.sqlite.org/src/info/10fa79d00f8091e5
https://www.sqlite.org/src/timeline?p=version-3.32.3&bt=version-3.32.2
https://www.sqlite.org/src/tktview?name=8f157e8010
https://usn.ubuntu.com/4438-1/
Common Vulnerability Exposure (CVE) ID: CVE-2020-27893
Common Vulnerability Exposure (CVE) ID: CVE-2020-27894
Common Vulnerability Exposure (CVE) ID: CVE-2020-27896
Common Vulnerability Exposure (CVE) ID: CVE-2020-27897
https://www.zerodayinitiative.com/advisories/ZDI-21-486/
Common Vulnerability Exposure (CVE) ID: CVE-2020-27898
Common Vulnerability Exposure (CVE) ID: CVE-2020-27899
Common Vulnerability Exposure (CVE) ID: CVE-2020-27900
Common Vulnerability Exposure (CVE) ID: CVE-2020-27901
Common Vulnerability Exposure (CVE) ID: CVE-2020-27903
Common Vulnerability Exposure (CVE) ID: CVE-2020-27904
Common Vulnerability Exposure (CVE) ID: CVE-2020-27906
Common Vulnerability Exposure (CVE) ID: CVE-2020-27907
Common Vulnerability Exposure (CVE) ID: CVE-2020-27908
Common Vulnerability Exposure (CVE) ID: CVE-2020-27909
https://www.zerodayinitiative.com/advisories/ZDI-21-374/
Common Vulnerability Exposure (CVE) ID: CVE-2020-27910
Common Vulnerability Exposure (CVE) ID: CVE-2020-27911
Common Vulnerability Exposure (CVE) ID: CVE-2020-27912
Common Vulnerability Exposure (CVE) ID: CVE-2020-27914
Common Vulnerability Exposure (CVE) ID: CVE-2020-27915
Common Vulnerability Exposure (CVE) ID: CVE-2020-27916
Common Vulnerability Exposure (CVE) ID: CVE-2020-27917
Common Vulnerability Exposure (CVE) ID: CVE-2020-27918
Debian Security Information: DSA-4877 (Google Search)
https://www.debian.org/security/2021/dsa-4877
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EQ3U3VBSOJB46WCO66TEWE5OAXLTU3YW/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/
https://security.gentoo.org/glsa/202104-03
https://support.apple.com/en-us/HT211934
http://www.openwall.com/lists/oss-security/2021/03/22/1
Common Vulnerability Exposure (CVE) ID: CVE-2020-27919
Common Vulnerability Exposure (CVE) ID: CVE-2020-27920
Common Vulnerability Exposure (CVE) ID: CVE-2020-27921
Common Vulnerability Exposure (CVE) ID: CVE-2020-27922
Common Vulnerability Exposure (CVE) ID: CVE-2020-27923
Common Vulnerability Exposure (CVE) ID: CVE-2020-27924
Common Vulnerability Exposure (CVE) ID: CVE-2020-27927
Common Vulnerability Exposure (CVE) ID: CVE-2020-27930
http://packetstormsecurity.com/files/161294/Apple-Safari-Remote-Code-Execution.html
https://support.apple.com/en-us/HT211940
https://support.apple.com/en-us/HT211944
https://support.apple.com/en-us/HT211945
https://support.apple.com/en-us/HT211946
https://support.apple.com/en-us/HT211947
Common Vulnerability Exposure (CVE) ID: CVE-2020-27931
https://support.apple.com/en-us/HT211843
https://support.apple.com/en-us/HT211844
https://support.apple.com/en-us/HT211850
Common Vulnerability Exposure (CVE) ID: CVE-2020-27932
http://packetstormsecurity.com/files/161295/XNU-Kernel-Turnstiles-Type-Confusion.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-27935
Common Vulnerability Exposure (CVE) ID: CVE-2020-27937
https://support.apple.com/en-us/HT212147
Common Vulnerability Exposure (CVE) ID: CVE-2020-27942
https://support.apple.com/en-us/HT212326
https://support.apple.com/en-us/HT212327
Common Vulnerability Exposure (CVE) ID: CVE-2020-27945
Common Vulnerability Exposure (CVE) ID: CVE-2020-27950
http://packetstormsecurity.com/files/161296/XNU-Kernel-Mach-Message-Trailers-Memory-Disclosure.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-27952
Common Vulnerability Exposure (CVE) ID: CVE-2020-29629
Common Vulnerability Exposure (CVE) ID: CVE-2020-29639
Common Vulnerability Exposure (CVE) ID: CVE-2020-9849
https://support.apple.com/en-us/HT211952
Common Vulnerability Exposure (CVE) ID: CVE-2020-9876
https://support.apple.com/kb/HT211291
https://support.apple.com/kb/HT211293
https://support.apple.com/kb/HT211294
https://support.apple.com/kb/HT211295
Common Vulnerability Exposure (CVE) ID: CVE-2020-9883
https://www.zerodayinitiative.com/advisories/ZDI-20-1389/
Common Vulnerability Exposure (CVE) ID: CVE-2020-9897
Common Vulnerability Exposure (CVE) ID: CVE-2020-9941
http://seclists.org/fulldisclosure/2020/Nov/21
Common Vulnerability Exposure (CVE) ID: CVE-2020-9942
https://support.apple.com/en-us/HT211292
Common Vulnerability Exposure (CVE) ID: CVE-2020-9943
Common Vulnerability Exposure (CVE) ID: CVE-2020-9944
Common Vulnerability Exposure (CVE) ID: CVE-2020-9945
Common Vulnerability Exposure (CVE) ID: CVE-2020-9947
https://support.apple.com/en-us/HT211845
Common Vulnerability Exposure (CVE) ID: CVE-2020-9949
https://support.apple.com/en-us/HT211289
Common Vulnerability Exposure (CVE) ID: CVE-2020-9950
Common Vulnerability Exposure (CVE) ID: CVE-2020-9955
Common Vulnerability Exposure (CVE) ID: CVE-2020-9956
Common Vulnerability Exposure (CVE) ID: CVE-2020-9960
Common Vulnerability Exposure (CVE) ID: CVE-2020-9962
Common Vulnerability Exposure (CVE) ID: CVE-2020-9963
Common Vulnerability Exposure (CVE) ID: CVE-2020-9965
Common Vulnerability Exposure (CVE) ID: CVE-2020-9966
Common Vulnerability Exposure (CVE) ID: CVE-2020-9967
http://packetstormsecurity.com/files/163501/XNU-Network-Stack-Kernel-Heap-Overflow.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-9969
Common Vulnerability Exposure (CVE) ID: CVE-2020-9971
Common Vulnerability Exposure (CVE) ID: CVE-2020-9974
Common Vulnerability Exposure (CVE) ID: CVE-2020-9975
Common Vulnerability Exposure (CVE) ID: CVE-2020-9977
Common Vulnerability Exposure (CVE) ID: CVE-2020-9978
Common Vulnerability Exposure (CVE) ID: CVE-2020-9987
Common Vulnerability Exposure (CVE) ID: CVE-2020-9988
Common Vulnerability Exposure (CVE) ID: CVE-2020-9989
Common Vulnerability Exposure (CVE) ID: CVE-2020-9991
https://support.apple.com/en-us/HT211847
Common Vulnerability Exposure (CVE) ID: CVE-2020-9996
Common Vulnerability Exposure (CVE) ID: CVE-2020-9999
Common Vulnerability Exposure (CVE) ID: CVE-2021-1755
Common Vulnerability Exposure (CVE) ID: CVE-2021-1775
Common Vulnerability Exposure (CVE) ID: CVE-2021-1790
Common Vulnerability Exposure (CVE) ID: CVE-2021-1803
CopyrightCopyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.