CVE-2020-27926

March 10, 2021

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.2 and iPadOS 14.2. Processing maliciously crafted web content may lead to arbitrary code execution.

Summary:

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.2 and iPadOS 14.2. Processing maliciously crafted web content may lead to arbitrary code execution.

Reference Links(if available):

  • https://support.apple.com/en-us/HT211929
  • https://support.apple.com/kb/HT212011
  • http://seclists.org/fulldisclosure/2020/Dec/26

  • CVSS Score (if available)

    v2: / HIGHAV:N/AC:M/Au:N/C:C/I:C/A:C

    v3: / HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    CISA Logo

    CISA: CISA Adds One Known Exploited Vulnerability to Catalog

    April 20, 2024
    CISA Logo

    CISA: Joint Guidance on Deploying AI Systems Securely

    April 20, 2024
    CISA Logo

    CISA: Juniper Releases Security Bulletin for Multiple Juniper Products

    April 20, 2024
    CISA Logo

    CISA: Citrix Releases Security Updates for XenServer and Citrix Hypervisor

    April 20, 2024
    CISA Logo

    CISA: Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS, CVE-2024-3400

    April 20, 2024