PT-2020-11858 · Apple · Apple Macos
R3Df09
+1
·
Published
2020-11-12
·
Updated
2022-10-14
·
CVE-2020-10014
CVSS v3.1
6.3
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
macOS versions prior to 11.0.1
Description
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue allows a malicious application to potentially break out of its sandbox.
Recommendations
For versions prior to 11.0.1, update to macOS Big Sur 11.0.1 to resolve the issue. As a temporary workaround, consider restricting the execution of untrusted applications to minimize the risk of exploitation.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apple Macos