CVE-2020-9922

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 10.15.6 Security Update 2020-004 Mojave versions prior to the update Security Update 2020-004 High Sierra versions prior to the update

Description: A logic issue was addressed with improved state management. Processing a maliciously crafted email may lead to writing arbitrary files. The vulnerability is related to the automatic unpacking mechanism of the Apple Mail client in Apple Mac OS, which is associated with incorrect handling of logical operations. Exploitation of the vulnerability may allow a remote attacker to write arbitrary files in the ~/Library/Mail and $TMPDIR directories. This could potentially lead to changes in the Mail application configuration, such as setting up automatic forwarding of incoming messages or spreading the exploit through the victim's address book. Further development of this vulnerability could potentially lead to remote code execution (RCE).

Recommendations: For macOS versions prior to 10.15.6, update to macOS Catalina 10.15.6 or later. For Security Update 2020-004 Mojave, apply the Security Update 2020-004 or later. For Security Update 2020-004 High Sierra, apply the Security Update 2020-004 or later. As a temporary workaround, consider disabling the automatic unpacking feature in the Mail client until a patch is available. Restrict access to the ~/Library/Mail and $TMPDIR directories to minimize the risk of exploitation.