What is CVE-2020-36521?

CVE-2020-36521 is a vulnerability in Apple Icloud For Windows. Published 2022-09-23.

Is CVE-2020-36521 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apple Icloud For Windows

CVE-2020-36521

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iCloud for Windows 11.4, iOS 14.0 and iPadOS 14.0, watchOS 7.0, tvOS 14.0, iCloud for Windows 7.21, iTunes for Windows 12.10.9. Processing a malicio…

EPSS: 0.001 (34.2th percentile) — read the EPSS interpretation.

Affected products

Apple Icloud For Windows — versions unspecified
Apple Ios And Ipados — versions unspecified
Apple Itunes For Windows — versions unspecified
Apple Watchos — versions unspecified

Public proof-of-concept exploits

Live-Hack-CVE/CVE-2020-36521

References

support.apple.com/en-us/HT211843 (x_refsource_MISC)
support.apple.com/en-us/HT211850 (x_refsource_MISC)
support.apple.com/en-us/HT211844 (x_refsource_MISC)
support.apple.com/en-us/HT211952 (x_refsource_MISC)
support.apple.com/en-us/HT211847 (x_refsource_MISC)
support.apple.com/en-us/HT211846 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-36521?: CVE-2020-36521 is a vulnerability in Apple Icloud For Windows. Published 2022-09-23.
Is CVE-2020-36521 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.