CVE-2020-9856: Medium severity macos catalina vulnerability
Published May 26, 2020
·Updated
CVMS. This issue was addressed with improved checks.
Other sources
This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.5. An application may be able to gain elevated privileges.
Credit
@@jinmo123, @@setuid0x0_, @@insu_yun_en(Trend Micro)
Affected Software
30 affected componentsFixes available
apple macOS Catalina<10.15.5
10.15.5
apple Mojave
apple High Sierra
Apple iOS and macOS>=10.13<10.13.6
Apple iOS and macOS>=10.14<10.14.6
Apple iOS and macOS>=10.15<10.15.5
Apple iOS and macOS=10.13.6
Apple iOS and macOS=10.13.6
Apple iOS and macOS=10.13.6-security_update_2018-002
Apple iOS and macOS=10.13.6-security_update_2018-003
Apple iOS and macOS=10.13.6-security_update_2019-001
Apple iOS and macOS=10.13.6-security_update_2019-002
Apple iOS and macOS=10.13.6-security_update_2019-003
Apple iOS and macOS=10.13.6-security_update_2019-004
Apple iOS and macOS=10.13.6-security_update_2019-005
Apple iOS and macOS=10.13.6-security_update_2019-006
Apple iOS and macOS=10.13.6-security_update_2019-007
Apple iOS and macOS=10.13.6-security_update_2020-001
Apple iOS and macOS=10.13.6-security_update_2020-002
Apple iOS and macOS=10.14.6
Apple iOS and macOS=10.14.6
Apple iOS and macOS=10.14.6-security_update_2019-001
Apple iOS and macOS=10.14.6-security_update_2019-002
Apple iOS and macOS=10.14.6-security_update_2019-004
Apple iOS and macOS=10.14.6-security_update_2019-005
Apple iOS and macOS=10.14.6-security_update_2019-006
Apple iOS and macOS=10.14.6-security_update_2019-007
Apple iOS and macOS=10.14.6-security_update_2020-001
Apple iOS and macOS=10.14.6-security_update_2020-002
Apple iOS and macOS=10.14.6-security_update_2020-003
Event History
Jun 9, 2020
CVE Published
via MITRE·04:18 PM
Data Sourced
via MITRE·04:18 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2020-9827
- CVE-2020-9772
- CVE-2020-9826
- CVE-2020-9842
- CVE-2020-9804
- CVE-2020-9815
- CVE-2020-9791
- CVE-2020-9831
- CVE-2020-9779
- CVE-2020-3882
- CVE-2020-9828
- CVE-2020-9856
- CVE-2020-9847
- CVE-2020-9855
- CVE-2020-9816
- CVE-2020-3878
- CVE-2020-9789
- CVE-2020-9790
- CVE-2020-9822
- CVE-2020-9796
- CVE-2020-9837
- CVE-2020-9821
- CVE-2020-9797
- CVE-2020-9852
- CVE-2020-9795
- CVE-2020-9808
- CVE-2020-9811
- CVE-2020-9812
- CVE-2020-9813
- CVE-2020-9814
- CVE-2020-9809
- CVE-2019-14868
- CVE-2020-9994
- CVE-2020-9857
- CVE-2020-9817
- CVE-2020-9851
- CVE-2020-9793
- CVE-2014-9512
- CVE-2020-9825
- CVE-2020-9771
- CVE-2020-9788
- CVE-2020-9854
- CVE-2020-9824
- CVE-2020-9810
- CVE-2020-9794
- CVE-2020-9839
- CVE-2020-9792
- CVE-2020-9844
- CVE-2020-9830
- CVE-2020-9834
- CVE-2020-9833
- CVE-2020-9832
- CVE-2020-9841
- CVE-2019-20044
Frequently Asked Questions
1
What is CVE-2020-9856?
CVE-2020-9856 is a vulnerability in the CVMS system that allows for unauthorized access.
2
How does CVE-2020-9856 affect macOS Catalina?
CVE-2020-9856 affects macOS Catalina versions up to and including 10.15.5.
3
Is Mojave affected by CVE-2020-9856?
Yes, Mojave is also affected by CVE-2020-9856.
4
What is the severity of CVE-2020-9856?
The severity of CVE-2020-9856 is not specified.
5
How can I fix CVE-2020-9856?
CVE-2020-9856 has been addressed with improved checks. Update your system to the latest version available from Apple.