CVE-2020-3889: Medium severity macos catalina vulnerability

Q: What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2020-3889.

Q: What is the affected software?

The affected software includes macOS Catalina version up to 10.15.4, Mojave, and High Sierra.

Q: What is the severity of CVE-2020-3889?

The severity of CVE-2020-3889 is not mentioned in the information provided.

Q: What is the remedy for this vulnerability in macOS Catalina?

The remedy for this vulnerability in macOS Catalina is to update to version 10.15.4.

Q: Where can I find more information about this vulnerability?

More information about this vulnerability can be found at the following link: [Apple Support](https://support.apple.com/en-us/HT211100)

Published Mar 24, 2020

Updated

Time Machine. A logic issue was addressed with improved state management.

Other sources

A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to read arbitrary files.

Credit

Lasse Trolle Borup(Danish Cyber Defence)

Affected Software

4 affected componentsFixes available

apple macOS Catalina<10.15.4

10.15.4

apple Mojave

apple High Sierra

Apple iOS and macOS<10.15.4

Event History

Apr 1, 2020

CVE Published

via MITRE·05:39 PM

Data Sourced

via MITRE·05:39 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT211100

Frequently Asked Questions

What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2020-3889.

What is the affected software?

The affected software includes macOS Catalina version up to 10.15.4, Mojave, and High Sierra.

What is the severity of CVE-2020-3889?

The severity of CVE-2020-3889 is not mentioned in the information provided.

What is the remedy for this vulnerability in macOS Catalina?