CVE-2020-9961

2020-10-2720:42:36

apple

www.cve.org

out-of-bounds read

input validation

macos

arbitrary code execution

malicious image

AI Score

7.8

Confidence

High

EPSS

0.001

Percentile

46.0%

JSON

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted image may lead to arbitrary code execution.

CNA Affected

[
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "10.15",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]