CVE-2020-3840

EPSS 0.47% · P65 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-3840

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An off by one issue existed in the handling of racoon configuration files. This issue was addressed through improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1. Loading a maliciously crafted racoon configuration file may lead to arbitrary code execution.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

多款Apple产品IPSec组件缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apple iOS等都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple tvOS是一套智能电视操作系统。Apple watchOS是一套智能手表操作系统。IPSec是其中的一个Internet协议安全组件。多款Apple产品中的IPSec组件存在安全漏洞。攻击者可借助恶意制作的racoon配置文件利用该漏洞执行任意代码。以下产品及版本受到影响：Apple tvOS 13.3.1之前版本；iOS 13.3.1之前版本；iPadOS 13.3.1之前版本；m

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Apple	iOS	unspecified ~ iOS 13.3.1 and iPadOS 13.3.1	-
Apple	macOS	unspecified ~ macOS Catalina 10.15.3	-
Apple	tvOS	unspecified ~ tvOS 13.3.1	-

II. Public POCs for CVE-2020-3840

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-3840

请登录查看更多情报信息。

https://support.apple.com/HT210919x_refsource_MISC
https://support.apple.com/HT210920x_refsource_MISC
https://support.apple.com/HT210918x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-3840

Same Patch Batch · Apple · 2020-02-27 · 43 CVEs total

CVE-2020-3867		多款Apple产品跨站脚本漏洞
CVE-2020-3853		多款Apple产品Kernel组件安全漏洞
CVE-2020-3870		多款Apple产品ImageIO组件缓冲区错误漏洞
CVE-2020-3869		Apple iOS和iPadOS FaceTime组件安全漏洞
CVE-2020-3871		Apple macOS Catalina Kernel组件缓冲区错误漏洞
CVE-2020-3874		Apple iOS和iPadOS Screenshots组件信息泄露漏洞
CVE-2020-3875		多款Apple产品Kernel组件缓冲区错误漏洞
CVE-2020-3877		Apple watchOS和macOS Catalina AnnotationKit组件缓冲区错误漏洞
CVE-2020-3878		多款Apple产品ImageIO组件缓冲区错误漏洞
CVE-2020-3873		Apple iOS和iPadOS Mail组件安全漏洞
CVE-2020-3868		多款Apple产品缓冲区错误漏洞
CVE-2020-3866		Apple macOS Catalina autofs组件安全漏洞
CVE-2020-3865		多款Apple产品缓冲区错误漏洞
CVE-2020-3862		多款Apple产品缓冲区错误漏洞
CVE-2020-3861		Apple iTunes for Windows WebKit组件安全漏洞
CVE-2020-3860		Apple iOS、iPadOS和watchOS Kernel组件缓冲区错误漏洞
CVE-2020-3858		Apple iOS和iPadOS Kernel组件缓冲区错误漏洞
CVE-2020-3857		多款Apple产品Audio组件缓冲区错误漏洞
CVE-2020-3856		多款Apple产品libxpc组件输入验证错误漏洞
CVE-2020-3854		Apple macOS Catalina Security组件缓冲区错误漏洞

Showing top 20 of 43 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: iOS

Same vendor: Apple

V. Comments for CVE-2020-3840

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-3840

I. Basic Information for CVE-2020-3840

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-3840

III. Intelligence Information for CVE-2020-3840

Same Patch Batch · Apple · 2020-02-27 · 43 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-3840

Leave a comment