CVE-2020-9986: Medium severity macos catalina vulnerability

Q: What is CVE-2020-9986?

CVE-2020-9986 is a vulnerability related to file access in certain home folder files in macOS Catalina, High Sierra, and Mojave.

Q: How does CVE-2020-9986 affect macOS Catalina?

CVE-2020-9986 affects macOS Catalina if it is version 10.15.7 or below.

Q: How does CVE-2020-9986 affect Apple High Sierra?

CVE-2020-9986 affects Apple High Sierra.

Q: How does CVE-2020-9986 affect Apple Mojave?

CVE-2020-9986 affects Apple Mojave.

Q: How can I fix CVE-2020-9986?

To fix CVE-2020-9986, update your macOS to version 10.15.7 or later.

Published Sep 24, 2020

Updated

Find My. A file access issue existed with certain home folder files. This was addressed with improved access restrictions.

Other sources

A file access issue existed with certain home folder files. This was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.7. A malicious application may be able to read sensitive location information.

Credit

Tim Kornhuber, Milan Stute, Alexander Heinrich(TU Darmstadt), Secure Mobile Networking Lab

Affected Software

4 affected componentsFixes available

apple macOS Catalina<10.15.7

10.15.7

apple High Sierra

apple Mojave

Apple iOS and macOS<10.15.7

Event History

Oct 22, 2020

CVE Published

via MITRE·06:06 PM

Data Sourced

via MITRE·06:06 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT211849

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2020-9986?

CVE-2020-9986 is a vulnerability related to file access in certain home folder files in macOS Catalina, High Sierra, and Mojave.

How does CVE-2020-9986 affect macOS Catalina?