CVE-2020-3916: Medium severity apple ios, ipados, and watchos vulnerability
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. Setting an alternate app icon may disclose a photo without needing permission to access photos.
Other sources
Icons. An access issue was addressed with additional sandbox restrictions.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2020-9772
- CVE-2020-3917
- CVE-2020-3883
- CVE-2020-3913
- CVE-2020-3916
- CVE-2020-9768
- CVE-2020-3919
- CVE-2020-3914
- CVE-2020-9785
- CVE-2020-3909
- CVE-2020-3911
- CVE-2020-3910
- CVE-2020-3891
- CVE-2020-3918
- CVE-2020-9787
- CVE-2020-3899
- CVE-2020-3895
- CVE-2020-3900
- CVE-2020-3901
- CVE-2020-3897
- CVE-2020-9770
- CVE-2020-9780
- CVE-2020-9777
- CVE-2020-3890
- CVE-2020-9775
- CVE-2020-9781
- CVE-2020-3888
- CVE-2020-3894
- CVE-2020-3902
- CVE-2020-3887
- CVE-2020-9783
- CVE-2020-3885
Frequently Asked Questions
What is CVE-2020-3916?
CVE-2020-3916 is a vulnerability that allows for an access issue in the Icons component.
How does the vulnerability affect Apple iOS?
The vulnerability affects Apple iOS versions up to but excluding 13.4.
How does the vulnerability affect Apple iPadOS?
The vulnerability affects Apple iPadOS versions up to but excluding 13.4.
How does the vulnerability affect Apple watchOS?
The vulnerability affects Apple watchOS versions up to but excluding 6.2.
How can I find more information on this vulnerability?
You can find more information on this vulnerability at the following references: [CVE-2020-3916](https://support.apple.com/en-us/HT211103) and [Apple Security Updates](https://support.apple.com/en-us/HT211102).