CVE-2020-29618

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 14.3 Apple iPadOS versions prior to 14.3 Apple tvOS versions prior to 14.3 Apple watchOS versions prior to 7.2 Apple iCloud for Windows versions prior to 12.0

Description The issue is related to an out-of-bounds read in the ImageIO component, which can be exploited by a remote attacker using a specially crafted image to execute arbitrary code. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Apple iOS versions prior to 14.3, update to iOS 14.3 or later. For Apple iPadOS versions prior to 14.3, update to iPadOS 14.3 or later. For Apple tvOS versions prior to 14.3, update to tvOS 14.3 or later. For Apple watchOS versions prior to 7.2, update to watchOS 7.2 or later. For Apple iCloud for Windows versions prior to 12.0, update to iCloud for Windows 12.0 or later.