PT-2020-20750 · Apple · Apple Macos+1

Bob Gendler

Published

2020-10-27

Updated

2020-10-30

CVE-2020-9774

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions macOS versions prior to 10.15.3 Security Update versions prior to 2020-001 Mojave Security Update versions prior to 2020-001 High Sierra

Description An issue existed with Siri Suggestions access to encrypted data, which may have allowed encrypted data to be inappropriately accessed. The issue was fixed by limiting access to encrypted data.

Recommendations For macOS versions prior to 10.15.3, update to macOS Catalina 10.15.3 or later. For Security Update versions prior to 2020-001 Mojave, apply Security Update 2020-001 Mojave or later. For Security Update versions prior to 2020-001 High Sierra, apply Security Update 2020-001 High Sierra or later.

Fix

Missing Encryption of Sensitive Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-311

Related Identifiers

CVE-2020-9774

Affected Products

Siri

Apple Macos

PT-2020-20750 · Apple · Apple Macos+1

CVE-2020-9774

Weakness Enumeration

Related Identifiers

Affected Products

References · 4