Main Vulnerability Database Vulnerabilities #VU28480

#VU28480 Buffer overflow in macOS - CVE-2020-9834

Published: June 1, 2020

Vulnerability identifier: #VU28480

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2020-9834

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
macOS

Software vendor:
Apple Inc.

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the Wi-Fi component. A remote attacker can trigger memory corruption and execute arbitrary code on the target system with kernel privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-gb/HT211170

#VU28480 Buffer overflow in macOS - CVE-2020-9834

Description

Remediation

External links

Please verify you're human