PT-2021-12110 · Apple · Apple Macos

Proteas

Published

2021-12-23

Updated

2022-01-04

CVE-2020-3886

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 10.15.4 Security Update 2020-002 Mojave versions prior to the update Security Update 2020-002 High Sierra versions prior to the update

Description: A use after free issue was addressed with improved memory management, allowing a malicious application to potentially execute arbitrary code with kernel privileges.

Recommendations: For macOS versions prior to 10.15.4, update to macOS Catalina 10.15.4 or later. For Security Update 2020-002 Mojave, apply the Security Update 2020-002. For Security Update 2020-002 High Sierra, apply the Security Update 2020-002.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2020-3886

Affected Products

Apple Macos

PT-2021-12110 · Apple · Apple Macos

CVE-2020-3886

Weakness Enumeration

Related Identifiers

Affected Products

References · 4