5.5

CVE-2020-3896

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to overwrite arbitrary files.

Data is provided by the National Vulnerability Database (NVD)
ApplemacOS X Version >= 10.13 < 10.13.6
ApplemacOS X Version >= 10.14 < 10.14.6
ApplemacOS X Version >= 10.15 < 10.15.4
ApplemacOS X Version10.13.6 Update-
ApplemacOS X Version10.13.6 Updatesecurity_update_2018-002
ApplemacOS X Version10.13.6 Updatesecurity_update_2018-003
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-001
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-002
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-003
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-004
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-005
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-006
ApplemacOS X Version10.13.6 Updatesecurity_update_2019-007
ApplemacOS X Version10.13.6 Updatesecurity_update_2020-001
ApplemacOS X Version10.14.6 Update-
ApplemacOS X Version10.14.6 Updatesecurity_update_2019-001
ApplemacOS X Version10.14.6 Updatesecurity_update_2019-002
ApplemacOS X Version10.14.6 Updatesecurity_update_2020-001
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.24% 0.448
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N