Main Vulnerability Database Exploits ID:4897 - Exploit for Out-of-bounds read in macOS - CVE-2020-27950

ID:4897 - Exploit for Out-of-bounds read in macOS - CVE-2020-27950

Published: December 2, 2020

Vulnerability identifier: #VU48173

Vulnerability risk: Low

CVE-ID: CVE-2020-27950

CWE-ID: CWE-125

Exploitation vector: Local access

Vulnerable software:
macOS

Link to public exploit:

https://github.com/synacktiv/CVE-2020-27950

Vulnerability description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within macOS kernel. A local user can run a specially crafted program to gain access to sensitive kernel information on the system.

Note, this vulnerability is being actively exploited in the wild.

Remediation

Install updates from vendor's website.

ID:4897 - Exploit for Out-of-bounds read in macOS - CVE-2020-27950

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human