Apple macOS up to 11.0 Image Remote Code Execution

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as critical was found in Apple macOS up to 11.0 (Operating System). Affected by this vulnerability is an unknown code of the component Image Handler. Upgrading to version 11.1 eliminates this vulnerability.

Field04/03/2021 10:37 AM04/08/2021 03:13 PM
vendorAppleApple
namemacOSmacOS
version<=11.0<=11.0
componentImage HandlerImage Handler
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
identifierHT212011HT212011
urlhttps://support.apple.com/en-us/HT212011https://support.apple.com/en-us/HT212011
nameUpgradeUpgrade
upgrade_version11.111.1
cveCVE-2020-29625CVE-2020-29625
date1617400800 (04/03/2021)1617400800 (04/03/2021)
typeOperating SystemOperating System
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore7.57.5
cvss2_vuldb_tempscore7.56.5
cvss3_vuldb_basescore6.36.3
cvss3_vuldb_tempscore6.36.0
cvss3_meta_basescore6.36.3
cvss3_meta_tempscore6.36.0
price_0day$5k-$25k$5k-$25k
price_trend++
cve_assigned1607382000
cve_nvd_summaryThis issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. Processing a maliciously crafted image may lead to arbitrary code execution.

Want to stay up to date on a daily basis?

Enable the mail alert feature now!