CVE-2020-3893: Input Validation
Bluetooth. A memory corruption issue was addressed with improved input validation.
Other sources
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to execute arbitrary code with kernel privileges.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2020-9772
- CVE-2020-3903
- CVE-2020-3904
- CVE-2020-3883
- CVE-2020-6616
- CVE-2020-9853
- CVE-2020-3907
- CVE-2020-3908
- CVE-2020-3912
- CVE-2020-9779
- CVE-2020-3892
- CVE-2020-3893
- CVE-2020-3905
- CVE-2019-8853
- CVE-2020-9776
- CVE-2020-9828
- CVE-2020-3913
- CVE-2020-9829
- CVE-2020-3898
- CVE-2020-3881
- CVE-2020-3886
- CVE-2019-14615
- CVE-2020-3919
- CVE-2020-3851
- CVE-2020-3896
- CVE-2020-3914
- CVE-2020-9785
- CVE-2020-3909
- CVE-2020-3911
- CVE-2020-3910
- CVE-2020-3884
- CVE-2020-3915
- CVE-2020-9775
- CVE-2020-9771
- CVE-2020-3918
- CVE-2019-19232
- CVE-2020-9786
- CVE-2020-3906
- CVE-2020-3889
- CVE-2020-9769
- CVE-2020-9787
- CVE-2020-3902
Frequently Asked Questions
What is vulnerability CVE-2020-3893 about?
CVE-2020-3893 is a memory corruption issue in the Bluetooth protocol that has been addressed with improved input validation.
Which software versions are affected by CVE-2020-3893?
macOS Catalina (version up to and including 10.15.4), Mojave, and High Sierra are affected by CVE-2020-3893.
What is the severity of CVE-2020-3893?
The severity of CVE-2020-3893 is not specified.
How can I fix CVE-2020-3893?
Update your affected software to the latest available version provided by Apple.
Where can I find more information about CVE-2020-3893?
You can find more information about CVE-2020-3893 at the official Apple support page: https://support.apple.com/en-us/HT211100