CVE-2020-3831: Race Condition

Q: What is CVE-2020-3831?

CVE-2020-3831 is a vulnerability in the Kernel that allows for a race condition, which has been addressed with improved locking.

Q: What software is affected by CVE-2020-3831?

Apple iOS and iPadOS versions up to but not including 13.3.1 are affected by CVE-2020-3831.

Q: How can I fix CVE-2020-3831?

To fix CVE-2020-3831, update your Apple iOS or iPadOS to version 13.3.1 or later.

Q: What is the severity of CVE-2020-3831?

The severity of CVE-2020-3831 is not mentioned in the provided information.

Q: Where can I find more information about CVE-2020-3831?

You can find more information about CVE-2020-3831 on Apple's support website: https://support.apple.com/en-us/HT210918

Published Jan 28, 2020

Updated

Kernel. A race condition was addressed with improved locking.

Other sources

A race condition was addressed with improved locking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. An application may be able to execute arbitrary code with kernel privileges.

Credit

Chilik Tamir(Zimperium zLabs), Corellium, Proteas(Qihoo 360 Nirvan Team)

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<13.3.1

13.3.1

Apple iOS, iPadOS, and macOS<13.3.1

13.3.1

Apple iOS, iPadOS, and macOS<13.3.1

iPhone OS<13.3.1

Event History

Feb 27, 2020

CVE Published

via MITRE·08:45 PM

Data Sourced

via MITRE·08:45 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT210918

Frequently Asked Questions

What is CVE-2020-3831?

CVE-2020-3831 is a vulnerability in the Kernel that allows for a race condition, which has been addressed with improved locking.

What software is affected by CVE-2020-3831?

Apple iOS and iPadOS versions up to but not including 13.3.1 are affected by CVE-2020-3831.

How can I fix CVE-2020-3831?

To fix CVE-2020-3831, update your Apple iOS or iPadOS to version 13.3.1 or later.

What is the severity of CVE-2020-3831?