Vulnerability in Apple Icloud For Windows

CVE-2020-9952

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0, watchOS 7.0, Safari 14.0, iCloud for Windows 11.4, iCloud for Windows 7.21. Processing maliciously crafted…

EPSS: 0.006 (70.6th percentile) — read the EPSS interpretation.

Affected products

Apple Icloud For Windows — versions unspecified
Apple Icloud For Windows (Legacy) — versions unspecified
Apple Ios — versions unspecified
Apple Safari — versions unspecified
Apple Tvos — versions unspecified
Apple Watchos — versions unspecified

References

support.apple.com/HT211850 (x_refsource_MISC)
support.apple.com/HT211844 (x_refsource_MISC)
support.apple.com/HT211845 (x_refsource_MISC)
support.apple.com/HT211843 (x_refsource_MISC)
support.apple.com/HT211846 (x_refsource_MISC)
support.apple.com/HT211847 (x_refsource_MISC)
20201115 APPLE-SA-2020-11-13-5 Additional information for APPLE-SA-2020-09-16-3 Safari 14.0 (mailing-list, x_refsource_FULLDISC)
20201115 APPLE-SA-2020-11-13-4 Additional information for APPLE-SA-2020-09-16-2 tvOS 14.0 (mailing-list, x_refsource_FULLDISC)
20201115 APPLE-SA-2020-11-13-3 Additional information for APPLE-SA-2020-09-16-1 iOS 14.0 and iPadOS 14.0 (mailing-list, x_refsource_FULLDISC)
20201115 APPLE-SA-2020-11-13-6 Additional information for APPLE-SA-2020-09-16-4 watchOS 7.0 (mailing-list, x_refsource_FULLDISC)