Apple macOS Catalina 10.15.3 Insufficient Information Vulnerability

Summary

An application may be able to use arbitrary entitlements

 

Credit:

The information has been provided by Vendor

The original article can be found at https://support.apple.com/en-in/HT211100


Details

This issue was addressed with improved checks. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to use arbitrary entitlements.

Vulnerable Systems:

macOS Catalina 10.15.3

    CVE Information:

    CVE-2020-3883

    Disclosure Timeline:
    Published Date:04/08/2020

    Categories: FeaturedNews