Executive Summary
Summary | |
---|---|
Title | iOS, iPadOS, tvOS, watchOS, and macOS contain a double-free vulnerability in the XNU kernel lio_listio() function |
Informations | |||
---|---|---|---|
Name | VU#127371 | First vendor Publication | 2020-05-26 |
Vendor | VU-CERT | Last vendor Modification | 2020-07-09 |
Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | |||
---|---|---|---|
Overall CVSS Score | 7.8 | ||
Base Score | 7.8 | Environmental Score | 7.8 |
impact SubScore | 5.9 | Temporal Score | 7.8 |
Exploitabality Sub Score | 1.8 | ||
Attack Vector | Local | Attack Complexity | Low |
Privileges Required | Low | User Interaction | None |
Scope | Unchanged | Confidentiality Impact | High |
Integrity Impact | High | Availability Impact | High |
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.2 | Attack Range | Local |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 3.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
OverviewiOS, iPadOS, tvOS, watchOS, and macOS contain a double-free vulnerability in the GNU kernel's DescriptioniOS, iPadOS, tvOS, watchOS, and macOS contain an a double-free vulnerability in the GNU kernel's ImpactBy convincing a user to run a malicious application on a device running iOS, iPadOS, tvOS, watchOS, or macOS, an attacker may be able to achieve arbitrary code execution in the kernel that is not restricted by sandboxes or other OS protections. SolutionApply updatesThis issue is addressed in the following OS updates from Apple: AcknowledgementsThis document was written by Will Dormann. |
Original Source
Url : https://kb.cert.org/vuls/id/127371 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-415 | Double Free |
CPE : Common Platform Enumeration
Alert History
Date | Informations |
---|---|
2020-07-10 21:28:41 |
|
2020-07-10 17:28:11 |
|
2020-07-10 17:17:29 |
|
2020-07-10 00:28:12 |
|
2020-07-09 21:28:37 |
|
2020-07-09 21:17:39 |
|
2020-07-02 21:28:32 |
|
2020-07-02 17:28:29 |
|
2020-07-02 17:17:30 |
|
2020-06-26 21:28:36 |
|
2020-06-26 17:28:15 |
|
2020-06-12 21:17:38 |
|
2020-06-03 21:17:36 |
|
2020-06-02 17:17:26 |
|
2020-05-29 21:17:34 |
|
2020-05-28 00:17:26 |
|
2020-05-26 21:17:38 |
|