CVE-2020-3884: Input Validation
Mail. An injection issue was addressed with improved validation.
Other sources
An injection issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A remote attacker may be able to cause arbitrary javascript code execution.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2020-9772
- CVE-2020-3903
- CVE-2020-3904
- CVE-2020-3883
- CVE-2020-6616
- CVE-2020-9853
- CVE-2020-3907
- CVE-2020-3908
- CVE-2020-3912
- CVE-2020-9779
- CVE-2020-3892
- CVE-2020-3893
- CVE-2020-3905
- CVE-2019-8853
- CVE-2020-9776
- CVE-2020-9828
- CVE-2020-3913
- CVE-2020-9829
- CVE-2020-3898
- CVE-2020-3881
- CVE-2020-3886
- CVE-2019-14615
- CVE-2020-3919
- CVE-2020-3851
- CVE-2020-3896
- CVE-2020-3914
- CVE-2020-9785
- CVE-2020-3909
- CVE-2020-3911
- CVE-2020-3910
- CVE-2020-3884
- CVE-2020-3915
- CVE-2020-9775
- CVE-2020-9771
- CVE-2020-3918
- CVE-2019-19232
- CVE-2020-9786
- CVE-2020-3906
- CVE-2020-3889
- CVE-2020-9769
- CVE-2020-9787
- CVE-2020-3902
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2020-3884.
What is the title of the vulnerability?
The title of the vulnerability is 'Mail. An injection issue was addressed with improved validation.'
What is the description of the vulnerability?
The description of the vulnerability is 'Mail. An injection issue was addressed with improved validation.'
Which software is affected by this vulnerability?
This vulnerability affects macOS Catalina versions up to 10.15.4, Mojave, and High Sierra.
How is this vulnerability fixed?
This vulnerability is fixed by updating macOS to version 10.15.4 or higher.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability on Apple's support page: https://support.apple.com/en-us/HT211100