Apple macOS Catalina 10.15.3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability

Summary

A local user may be able to view sensitive user information

Credit:

The information has been provided by Yuval Ron, Amichai Shulman and Eli Biham of Technion – Israel Institute of Technology

The original article can be found at https://support.apple.com/en-in/HT211100


Details

A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to view sensitive user information.

Vulnerable Systems:

macOS Catalina 10.15.3

    CVE Information:

    CVE-2020-3881

    Disclosure Timeline:
    Published Date:04/08/2020

    Categories: FeaturedNews