PT-2020-6511 · Apple · Ios+2
Ian Beer
·
Published
2020-03-09
·
Updated
2025-10-23
·
CVE-2020-9819
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Apple iOS versions prior to 13.5
Apple iPadOS versions prior to 13.5
Apple watchOS versions prior to 6.2.5 and 5.3.7
Description
The issue is related to a memory corruption vulnerability in the Mail client of iOS, iPadOS, and watchOS operating systems. It occurs when processing malicious email messages, allowing a remote attacker to cause a denial of service due to a buffer overflow in memory. The vulnerability can be exploited by processing a maliciously crafted mail message, which may lead to heap corruption.
Recommendations
For Apple iOS versions prior to 13.5, update to iOS 13.5 or later.
For Apple iPadOS versions prior to 13.5, update to iPadOS 13.5 or later.
For Apple watchOS versions prior to 6.2.5, update to watchOS 6.2.5 or later.
For Apple watchOS versions prior to 5.3.7, update to watchOS 5.3.7 or later.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ios
Ipados
Watchos