CVE-2020-9907

Name of the Vulnerable Software and Affected Versions iOS versions prior to 13.6 iPadOS versions prior to 13.6 tvOS versions prior to 13.4.8

Description The issue is related to a memory corruption problem in the AVEVideoEncoder component, which can lead to a buffer overflow. This can potentially allow an attacker to execute arbitrary code with kernel privileges. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For iOS versions prior to 13.6, update to iOS 13.6 or later. For iPadOS versions prior to 13.6, update to iPadOS 13.6 or later. For tvOS versions prior to 13.4.8, update to tvOS 13.4.8 or later.