CVE-2020-9930

HIGH

Apple Mac OS X < 10.13.6 - Out-of-Bounds Read

Title source: rule
STIX 2.1

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. A local user may be able to cause unexpected system termination or read kernel memory.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT211289

Scores

CVSS v3 7.1
EPSS 0.0004
EPSS Percentile 11.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE
CWE-125
Status published
Products (3)
apple/mac_os_x 10.13.6 (14 CPE variants)
apple/mac_os_x 10.14.6 (11 CPE variants)
apple/mac_os_x < 10.13.6
Published Apr 02, 2021
Tracked Since Feb 18, 2026