Vulnerability Description
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5. Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Ipados | < 13.5 |
| Apple | Iphone Os | < 12.4.7 |
| Apple | Watchos | < 6.2.5 |
Related Weaknesses (CWE)
References
- https://support.apple.com/HT211168Release NotesVendor Advisory
- https://support.apple.com/HT211169Release NotesVendor Advisory
- https://support.apple.com/HT211175Release NotesVendor Advisory
- https://support.apple.com/HT211168Release NotesVendor Advisory
- https://support.apple.com/HT211169Release NotesVendor Advisory
- https://support.apple.com/HT211175Release NotesVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-US Government Resource
FAQ
What is CVE-2020-9818?
CVE-2020-9818 is a vulnerability with a CVSS score of 8.8 (HIGH). An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5. Processing a maliciously crafted mail message may ...
How severe is CVE-2020-9818?
CVE-2020-9818 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9818?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Ipados, Apple Iphone Os, Apple Watchos.