Skip to main content
CVE-2020-11470 LOW POC Monitor

Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Apple Meetings
NVD
CVSS 3.1
3.3
EPSS
0.3%
CVE-2020-9780 LOW Monitor

The issue was resolved by clearing application previews when content is deleted. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Apple Ipados Iphone Os
NVD
CVSS 3.1
3.3
EPSS
0.3%
CVE-2020-9776 LOW Monitor

This issue was addressed with a new entitlement. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Mac Os X
NVD
CVSS 3.1
3.3
EPSS
0.6%
CVE-2020-9773 LOW Monitor

The issue was addressed with improved handling of icon caches. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Ipados Iphone Os
NVD
CVSS 3.1
3.3
EPSS
0.6%
CVE-2020-3894 LOW Monitor

A race condition was addressed with additional validation. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Race Condition Microsoft Apple Icloud +5
NVD
CVSS 3.1
3.1
EPSS
1.1%
CVE-2020-3891 LOW Monitor

A logic issue was addressed with improved state management. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Ipad Os Iphone Os Watchos
NVD
CVSS 3.1
2.4
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy