Apple iPhone 6s and later Always-Incorrect Control Flow Implementation Vulnerability

Summary

A file URL may be incorrectly processed

Credit:

The information has been provided by Ryan Pickren

The original article can be found at https://support.apple.com/en-in/HT211102


Details

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A file URL may be incorrectly processed.

Vulnerable Systems:

iPhone 6s and later,

iPad Air 2 and later,

iPad mini 4 and later,

iPod touch 7th generation

    CVE Information:

    CVE-2020-3885

    Disclosure Timeline:
    Published Date:04/08/2020

    Categories: FeaturedNews