Vulnerability Description
Multiple issues were addressed with improved logic. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Icloud | < 7.20 |
| Apple | Itunes | < 12.10.8 |
| Apple | Safari | < 13.1.2 |
| Apple | Ipados | < 13.6 |
| Apple | Iphone Os | < 13.6 |
| Apple | Tvos | < 13.4.8 |
| Apple | Watchos | < 6.2.8 |
References
- https://support.apple.com/HT211288Vendor Advisory
- https://support.apple.com/HT211290Vendor Advisory
- https://support.apple.com/HT211291Vendor Advisory
- https://support.apple.com/HT211292Vendor Advisory
- https://support.apple.com/HT211293Vendor Advisory
- https://support.apple.com/HT211294Vendor Advisory
- https://support.apple.com/HT211295Vendor Advisory
- https://support.apple.com/HT211288Vendor Advisory
- https://support.apple.com/HT211290Vendor Advisory
- https://support.apple.com/HT211291Vendor Advisory
- https://support.apple.com/HT211292Vendor Advisory
- https://support.apple.com/HT211293Vendor Advisory
- https://support.apple.com/HT211294Vendor Advisory
- https://support.apple.com/HT211295Vendor Advisory
FAQ
What is CVE-2020-9910?
CVE-2020-9910 is a vulnerability with a CVSS score of 8.8 (HIGH). Multiple issues were addressed with improved logic. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCl...
How severe is CVE-2020-9910?
CVE-2020-9910 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9910?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Icloud, Apple Itunes, Apple Safari, Apple Ipados, Apple Iphone Os.