Back to KEVs

CVE-2020-3837

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3,...

Basic Information

CVE State: PUBLISHED
Reserved Date: December 18, 2019
Published Date: February 27, 2020
Last Updated: January 29, 2025
Vendor: Apple
Product: iOS, macOS, tvOS, watchOS
Description: A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.

CVSS Scores

CVSS v3.1

7.8 - HIGH

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC Information

Exploitation: active
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (added 2022-06-27 00:00:00 UTC) Source

References

https://support.apple.com/HT210919 https://support.apple.com/HT210918 https://support.apple.com/HT210921 https://support.apple.com/HT210920

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-06-27 00:00:00 UTC