HKCert
  

Apple Products Multiple Vulnerabilities

Release Date: 28 / 05 / 2020
Last Update: 03 / 06 / 2020
Risk Level:  


Multiple vulnerabilities were identified in Apple products, a remote attacker could exploit some of these vulnerabilities to trigger cross site scripting, denial of service, elevation of privilege, remote code execution, security restriction bypass and sensitive information disclosure on the targeted system.

 

[Updated on 2020-06-03]

Updated on "System Or Technologies Affected", "Solutions", "Vulnerability Identifier" and "Related Link" Section for CVE-2020-9859.

  • Cross-Site Scripting
  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • macOS
  • Windows Migration Assistant
  • Safari
  • iCloud for Windows
  • iOS
  • iPadOS
  • iPadOS
  • tvOS
  • watchOS

Before installation of the software, please visit the vendor web-site for more details.

Update to the following versions via "Software Update":
  • macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra
  • Windows Migration Assistant 2.2.0.0
  • Safari 13.1.1
  • iCloud for Windows 11.2
  • iCloud for Windows 7.19
  • iOS 13.5.1
  • iPadOS 13.5.1
  • tvOS 13.4.6
  • watchOS 6.2.6