PT-2020-17225 · Apple · Apple Macos

Published

2020-12-14

Updated

2021-04-08

CVE-2020-29620

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS versions prior to 11.1 Security Update 2020-001 Catalina (affected versions not specified) Security Update 2020-007 Mojave (affected versions not specified)

Description A malicious application may be able to elevate privileges due to an issue that was addressed with improved entitlements.

Recommendations For macOS versions prior to 11.1, update to macOS Big Sur 11.1 or later to resolve the issue. For Security Update 2020-001 Catalina, apply Security Update 2020-001 to resolve the issue. For Security Update 2020-007 Mojave, apply Security Update 2020-007 to resolve the issue.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2020-29620

Affected Products

Apple Macos

PT-2020-17225 · Apple · Apple Macos

CVE-2020-29620

Weakness Enumeration

Related Identifiers

Affected Products

References · 5