CVE-2020-9774

HIGH

macOS < 10.15.3 - Unprotected User Data Exposure via Siri Suggestions

Title source: llm
STIX 2.1

Description

An issue existed with Siri Suggestions access to encrypted data. The issue was fixed by limiting access to encrypted data. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. Encrypted data may be inappropriately accessed.

References (1)

Core 1
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT210919

Scores

CVSS v3 7.5
EPSS 0.0061
EPSS Percentile 44.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-311
Status published
Products (1)
apple/mac_os_x < 10.15.3
Published Oct 27, 2020
Tracked Since Feb 18, 2026