CVE-2020-27951 Information

Description

This issue was addressed with improved checks. This issue is fixed in watchOS 6.3 iOS 12.5 iOS 14.3 and iPadOS 14.3 watchOS 7.2. Unauthorized code execution may lead to an authentication policy violation.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Reference

https://support.apple.com/en-us/HT212003 https://support.apple.com/en-us/HT212009 https://support.apple.com/en-us/HT212006 https://support.apple.com/en-us/HT212004

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8