CVE-2020-14977

EPSS 0.80% · P74 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-14977

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in F-Secure SAFE 17.7 on macOS. The XPC services use the PID to identify the connecting client, which allows an attacker to perform a PID reuse attack and connect to a privileged XPC service, and execute privileged commands on the system. NOTE: the attacker needs to execute code on an already compromised machine.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

F-Secure SAFE 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

F-Secure SAFE是芬兰F-Secure公司的一套杀毒软件。 F-Secure SAFE 17.7版本（macOS）中存在安全漏洞，该漏洞源于XPC服务使用PID来标识连接客户端。攻击者可借助PID重用攻击利用该漏洞在系统上执行命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-14977

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-14977

请登录查看更多情报信息。

https://theevilbit.github.io/posts/x_refsource_MISC
https://www.f-secure.com/en/business/programs/vulnerability-reward-program/hall-of-famex_refsource_MISC
https://www.f-secure.com/en/home/products/safex_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-14977

Same Patch Batch · n/a · 2020-06-23 · 18 CVEs total

CVE-2020-14976		Galaxy Technologies GNS3 server ubridge 信息泄露漏洞
CVE-2020-14940		TuxGuitar 代码问题漏洞
CVE-2020-14939		FreedroidRPG 输入验证错误漏洞
CVE-2020-14938		FreedroidRPG 缓冲区错误漏洞
CVE-2020-14993		多款DrayTek产品缓冲区错误漏洞
CVE-2020-14965		TP-Link TL-WR740N和TL-WR740ND 注入漏洞
CVE-2020-14971		Pi-hole 代码注入漏洞
CVE-2020-9438		Tinxy Door Lock 安全漏洞
CVE-2020-14978		F-Secure SAFE 安全漏洞
CVE-2020-12033		Rockwell Automation FactoryTalk Services Platform 输入验证错误漏洞
CVE-2020-14975		IOBit Unlocker 安全漏洞
CVE-2020-14974		IOBit Unlocker 安全漏洞
CVE-2020-14073		Paessler PRTG Network Monitor 跨站脚本漏洞
CVE-2020-13157		VINADES NukeViet 跨站请求伪造漏洞
CVE-2020-13156		VINADES NukeViet 跨站请求伪造漏洞
CVE-2020-13155		VINADES NukeViet 跨站请求伪造漏洞
CVE-2020-12021		OSIsoft PI Web API 跨站脚本漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-14977

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-14977

I. Basic Information for CVE-2020-14977

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-14977

III. Intelligence Information for CVE-2020-14977

Same Patch Batch · n/a · 2020-06-23 · 18 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-14977

Leave a comment