What is CVE-2020-9883?

CVE-2020-9883 is a vulnerability in Apple Icloud For Windows. Published 2020-10-22.

Is CVE-2020-9883 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apple Icloud For Windows

CVE-2020-9883

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windo…

EPSS: 0.011 (78.0th percentile) — read the EPSS interpretation.

Affected products

Apple Icloud For Windows — versions unspecified
Apple Icloud For Windows (Legacy) — versions unspecified
Apple Ios — versions unspecified
Apple Itunes For Windows — versions unspecified
Apple Macos — versions unspecified
Apple Tvos — versions unspecified
Apple Watchos — versions unspecified

Public proof-of-concept exploits

Live-Hack-CVE/CVE-2020-9883

References

support.apple.com/kb/HT211289 (x_refsource_MISC)
support.apple.com/kb/HT211288 (x_refsource_MISC)
support.apple.com/kb/HT211290 (x_refsource_MISC)
support.apple.com/kb/HT211291 (x_refsource_MISC)
support.apple.com/kb/HT211293 (x_refsource_MISC)
support.apple.com/kb/HT211294 (x_refsource_MISC)
support.apple.com/kb/HT211295 (x_refsource_MISC)
support.apple.com/kb/HT211931 (x_refsource_CONFIRM)
www.zerodayinitiative.com/advisories/ZDI-20-1389/ (x_refsource_MISC)
20201215 APPLE-SA-2020-12-14-4 Additional information for APPLE-SA-2020-11-13-1 macOS Big Sur 11.0.1 (mailing-list, x_refsource_FULLDISC)

Frequently asked questions

What is CVE-2020-9883?: CVE-2020-9883 is a vulnerability in Apple Icloud For Windows. Published 2020-10-22.
Is CVE-2020-9883 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.