Apple Products Multiple Vulnerabilities

Impact

• Cross-Site Scripting
• Denial of Service
• Elevation of Privilege
• Remote Code Execution
• Security Restriction Bypass
• Information Disclosure

System / Technologies affected

• iOS prior to 13.4
• iPadOS prior to 13.4
• iTunes for Windows prior to 12.10.5
• macOS Catalina 10.15.3 and prior versions
• macOS High Sierra 10.13.6 and prior versions
• macOS Mojave 10.14.6 and prior versions
• Safari prior to 13.1
• tvOS prior to 13.4
• watchOS prior to 6.2
• Xcode prior to 11.4

For more, please refer to: support.apple.com/en-us/HT201222

Solutions

Before installation of the software, please visit the vendor web-site for more details.

• Apply fixes issued by the vendor:
  For detail, please refer to the link below:
  Apple Security updates

Vulnerability Identifier

• CVE-2019-14615
• CVE-2019-19232
• CVE-2019-8853
• CVE-2020-3851
• CVE-2020-3881
• CVE-2020-3883
• CVE-2020-3884
• CVE-2020-3885
• CVE-2020-3887
• CVE-2020-3888
• CVE-2020-3889
• CVE-2020-3890
• CVE-2020-3891
• CVE-2020-3892
• CVE-2020-3893
• CVE-2020-3894
• CVE-2020-3895
• CVE-2020-3897
• CVE-2020-3899
• CVE-2020-3900
• CVE-2020-3901
• CVE-2020-3902
• CVE-2020-3903
• CVE-2020-3904
• CVE-2020-3905
• CVE-2020-3906
• CVE-2020-3907
• CVE-2020-3908
• CVE-2020-3909
• CVE-2020-3910
• CVE-2020-3911
• CVE-2020-3912
• CVE-2020-3913
• CVE-2020-3914
• CVE-2020-3916
• CVE-2020-3917
• CVE-2020-3919
• CVE-2020-9768
• CVE-2020-9769
• CVE-2020-9770
• CVE-2020-9773
• CVE-2020-9775
• CVE-2020-9776
• CVE-2020-9777
• CVE-2020-9780
• CVE-2020-9781
• CVE-2020-9783
• CVE-2020-9784
• CVE-2020-9785

Source

• Apple

Related Link

• https://support.apple.com/en-us/HT201222
• https://support.apple.com/en-hk/HT211105
• https://support.apple.com/en-hk/HT211102
• https://support.apple.com/en-hk/HT211104
• https://support.apple.com/en-hk/HT211103
• https://support.apple.com/en-hk/HT211101
• https://support.apple.com/en-hk/HT211100
• https://support.apple.com/en-hk/HT211108