Sign-up

ID

VAR-202006-1632


CVE

CVE-2020-9838


TITLE

iOS and iPadOS Out-of-bounds read vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2020-006161

DESCRIPTION

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5. A remote attacker may be able to cause arbitrary code execution. iOS and iPadOS Exists in an out-of-bounds read vulnerability due to a flaw in the handling of bounds checks.Arbitrary code could be executed by a remote attacker. Both Apple iOS and Apple iPadOS are products of Apple (Apple). Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. Bluetooth is one of the Bluetooth components. A buffer error vulnerability exists in the Bluetooth component in Apple iOS versions prior to 13.5 and iPadOS versions prior to 13.5

Trust: 1.71

sources: NVD: CVE-2020-9838 // JVNDB: JVNDB-2020-006161 // VULHUB: VHN-187963

AFFECTED PRODUCTS

vendor:applemodel:iphone osscope:ltversion:13.5

Trust: 1.0

vendor:applemodel:ipadosscope:ltversion:13.5

Trust: 1.0

vendor:applemodel:ipadosscope:eqversion:13.5 未満 (ipad mini 4 以降)

Trust: 0.8

vendor:applemodel:ipadosscope:eqversion:13.5 未満 (ipad air 2 以降)

Trust: 0.8

vendor:applemodel:iosscope:eqversion:13.5 未満 (ipod touch 第 7 世代)

Trust: 0.8

vendor:applemodel:iosscope:eqversion:13.5 未満 (iphone 6s 以降)

Trust: 0.8

sources: JVNDB: JVNDB-2020-006161 // NVD: CVE-2020-9838

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-9838
value: CRITICAL

Trust: 1.0

NVD: JVNDB-2020-006161
value: CRITICAL

Trust: 0.8

CNNVD: CNNVD-202005-1338
value: CRITICAL

Trust: 0.6

VULHUB: VHN-187963
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2020-9838
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2020-006161
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-187963
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2020-9838
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: JVNDB-2020-006161
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-187963 // JVNDB: JVNDB-2020-006161 // CNNVD: CNNVD-202005-1338 // NVD: CVE-2020-9838

PROBLEMTYPE DATA

problemtype:CWE-125

Trust: 1.9

sources: VULHUB: VHN-187963 // JVNDB: JVNDB-2020-006161 // NVD: CVE-2020-9838

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202005-1338

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202005-1338

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2020-006161

PATCH
title:HT211168url:https://support.apple.com/en-us/HT211168
Trust: 0.8
title:HT211168url:https://support.apple.com/ja-jp/HT211168
Trust: 0.8
title:Apple iOS  and Apple iPadOS Bluetooth Fix for component buffer error vulnerabilityurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=121032
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2020-006161 // 
            
            
            
            CNNVD: CNNVD-202005-1338

EXTERNAL IDS
db:NVDid:CVE-2020-9838
Trust: 2.5
db:JVNid:JVNVU98042162
Trust: 0.8
db:JVNDBid:JVNDB-2020-006161
Trust: 0.8
db:CNNVDid:CNNVD-202005-1338
Trust: 0.7
db:NSFOCUSid:49309
Trust: 0.6
db:AUSCERTid:ESB-2020.1855
Trust: 0.6
db:CNVDid:CNVD-2020-33213
Trust: 0.1
db:VULHUBid:VHN-187963
Trust: 0.1
sources:
            
            
            VULHUB: VHN-187963 // 
            
            
            
            JVNDB: JVNDB-2020-006161 // 
            
            
            
            CNNVD: CNNVD-202005-1338 // 
            
            
            
            NVD: CVE-2020-9838

REFERENCES
url:https://support.apple.com/ht211168
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2020-9838
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-9838
Trust: 0.8
url:http://jvn.jp/vu/jvnvu98042162/index.html
Trust: 0.8
url:https://support.apple.com/kb/ht211168
Trust: 0.6
url:http://www.nsfocus.net/vulndb/49309
Trust: 0.6
url:https://support.apple.com/en-us/ht211168
Trust: 0.6
url:https://www.auscert.org.au/bulletins/esb-2020.1855/
Trust: 0.6
sources:
            
            
            VULHUB: VHN-187963 // 
            
            
            
            JVNDB: JVNDB-2020-006161 // 
            
            
            
            CNNVD: CNNVD-202005-1338 // 
            
            
            
            NVD: CVE-2020-9838

CREDITS
Dennis Heinze (@ttdennis) of TU Darmstadt,Secure Mobile Networking Lab
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-202005-1338

SOURCES
db:VULHUBid:VHN-187963
db:JVNDBid:JVNDB-2020-006161
db:CNNVDid:CNNVD-202005-1338
db:NVDid:CVE-2020-9838

LAST UPDATE DATE
2024-11-23T20:18:02.221000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-187963date:2023-01-09T00:00:00
db:JVNDBid:JVNDB-2020-006161date:2020-07-02T00:00:00
db:CNNVDid:CNNVD-202005-1338date:2021-10-29T00:00:00
db:NVDid:CVE-2020-9838date:2024-11-21T05:41:22.580

SOURCES RELEASE DATE
db:VULHUBid:VHN-187963date:2020-06-09T00:00:00
db:JVNDBid:JVNDB-2020-006161date:2020-07-02T00:00:00
db:CNNVDid:CNNVD-202005-1338date:2020-05-20T00:00:00
db:NVDid:CVE-2020-9838date:2020-06-09T17:15:14.567