5.5

CVE-2020-9979

A trust issue was addressed by removing a legacy API. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0. An attacker may be able to misuse a trust relationship to download malicious content.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPadOS Version < 14.0
AppleiPhone OS Version < 14.0
AppletvOS Version < 14.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.321
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://seclists.org/fulldisclosure/2020/Nov/20
Third Party Advisory
Mailing List
http://seclists.org/fulldisclosure/2020/Nov/19
Third Party Advisory
Mailing List
https://support.apple.com/en-us/HT211850
Vendor Advisory
Release Notes
https://support.apple.com/en-us/HT211843
Vendor Advisory
Release Notes