CVE-2020-27930

HIGH KEV

iPadOS < 14.2 - Remote Code Execution via Maliciously Crafted Font

Title source: llm

Exploitation Summary

CVE-2020-27930 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added November 3, 2021. EIP tracks 2 public exploits from researchers including X1cT34m, FunPhishing.

Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 12.4.9, watchOS 6.2.9, Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave, iOS 14.2 and iPadOS 14.2, watchOS 5.3.9, macOS Catalina 10.15.7 Supplemental Update, macOS Catalina 10.15.7 Update. Processing a maliciously crafted font may lead to arbitrary code execution.

Exploits (2)

github NO CODE 4 stars

by X1cT34m · cpoc

https://github.com/X1cT34m/CVE-and-PoC/tree/main/2020/CVE-2020-27930

View Code ZIP pw:eip

nomisec NO CODE

by FunPhishing · client-side

https://github.com/FunPhishing/Apple-Safari-Remote-Code-Execution-CVE-2020-27930

View Code ZIP pw:eip

References (11)

Core 11

Core References

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211931

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211928

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211929

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211940

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211944

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211945

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211946

Vendor Advisory x_refsource_misc

https://support.apple.com/en-us/HT211947

Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2020/Dec/32

Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/161294/Apple-Safari-Remote-Code-Execution.html

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-27930

Scores

CVSS v3 7.8

EPSS 0.4395

EPSS Percentile 97.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable no

Technical Impact total

Details

CISA KEV 2021-11-03

VulnCheck KEV 2020-10-26

InTheWild.io 2020-10-26

ENISA EUVD EUVD-2020-20423

CWE

CWE-787

Status published

Products (5)

apple/ipados < 14.2

apple/iphone_os < 12.4.9

apple/mac_os_x < 10.15.7

apple/macos 11.0 - 11.0.1

apple/watchos < 5.3.9

Published Dec 08, 2020

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026