Apple tvOS Image out-of-bounds read

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, was found in Apple tvOS (Digital Media Player) (version unknown). Affected is an unknown code of the component Image Handler. Upgrading eliminates this vulnerability.

Field04/03/2021 10:34 AM04/08/2021 02:37 PM
vendorAppleApple
nametvOStvOS
componentImage HandlerImage Handler
cwe125 (information disclosure)125 (information disclosure)
risk11
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
nameUpgradeUpgrade
cveCVE-2020-29615CVE-2020-29615
date1617400800 (04/03/2021)1617400800 (04/03/2021)
typeDigital Media PlayerDigital Media Player
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore5.05.0
cvss2_vuldb_tempscore5.04.4
cvss3_vuldb_basescore4.34.3
cvss3_vuldb_tempscore4.34.1
cvss3_meta_basescore4.34.3
cvss3_meta_tempscore4.34.1
price_0day$0-$5k$0-$5k
cve_assigned1607382000
cve_nvd_summaryAn out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted image may lead to a denial of service.

Might our Artificial Intelligence support you?

Check our Alexa App!