Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-9855

EPSS 0.05% · P16
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-9855

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.5. A local attacker may be able to elevate their privileges.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apple macOS Catalina Find My组件输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apple macOS Catalina是美国苹果(Apple)公司的一套专为Mac计算机所开发的专用操作系统。Find My是其中的一个支持跟踪Apple设备位置的组件。 Apple macOS Catalina 10.15.5之前版本中的Find My组件存在安全漏洞。本地攻击者可利用该漏洞提升权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
ApplemacOS unspecified ~ macOS Catalina 10.15.5 -

II. Public POCs for CVE-2020-9855

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-9855

登录查看更多情报信息。

Same Patch Batch · Apple · 2020-06-09 · 59 CVEs total

CVE-2020-9831Apple macOS Catalina Bluetooth组件缓冲区错误漏洞
CVE-2020-9851Apple macOS Catalina PackageKit组件安全漏洞
CVE-2020-9843多款Apple产品跨站脚本漏洞
CVE-2020-9858Apple Windows Migration Assistant Windows Installer组件代码问题漏洞
CVE-2020-9848Apple iOS和Apple iPadOS Notifications组件信息泄露漏洞
CVE-2020-9856Apple macOS Catalina CVMS组件缓冲区错误漏洞
CVE-2020-9835Apple iOS和Apple iPadOS FaceTime组件输入验证错误漏洞
CVE-2020-9833Apple macOS Catalina Wi-Fi组件缓冲区错误漏洞
CVE-2020-9829多款Apple产品CoreText组件输入验证错误漏洞
CVE-2020-9834Apple macOS Catalina Wi-Fi组件缓冲区错误漏洞
CVE-2020-9839多款Apple产品System Preferences组件竞争条件问题漏洞
CVE-2020-9832Apple macOS Catalina Wi-Fi组件缓冲区错误漏洞
CVE-2020-9826Apple macOS Catalina、iOS和iPadOS AirDrop组件输入验证错误漏洞
CVE-2020-9824Apple macOS Catalina SIP组件安全漏洞
CVE-2020-9830Apple macOS Catalina Wi-Fi组件缓冲区错误漏洞
CVE-2020-9827多款Apple产品Accounts组件安全漏洞
CVE-2020-9822Apple macOS Catalina Intel Graphics Driver组件缓冲区错误漏洞
CVE-2020-9825Apple iOS、iPadOS和macOS Catalina Sandbox组件安全漏洞
CVE-2020-9820Apple iOS和Apple iPadOS File System组件安全漏洞
CVE-2020-9821多款Apple产品Kernel组件缓冲区错误漏洞

Showing top 20 of 59 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: macOS
Same vendor: Apple

V. Comments for CVE-2020-9855

No comments yet

Leave a comment