SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2020-3894

A race condition was addressed with additional validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. An application may be able to read restricted memory.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:		CVSS V2 Severity:
CVSS Score : 3.1		CVSS Score : 2.6
Exploit Score: 1.6		Exploit Score: 4.9
Impact Score: 1.4		Impact Score: 2.9

CVSS V3 Metrics:		CVSS V2 Metrics:
Attack Vector: NETWORK		Access Vector: NETWORK
Attack Complexity: HIGH		Access Complexity: HIGH
Privileges Required: NONE		Authentication: NONE
User Interaction: REQUIRED		Confidentiality: PARTIAL
Scope: UNCHANGED		Integrity: NONE
Confidentiality: LOW		Availability: NONE
Integrity: NONE
Availability: NONE

Reference:

https://support.apple.com/HT211101

https://support.apple.com/HT211102

https://support.apple.com/HT211104

https://support.apple.com/HT211105

https://support.apple.com/HT211106

https://support.apple.com/HT211107


30479



423868



248392



909



195452



282