CVE-2020-27904: CVE-2020-27904

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-27904

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to execute arbitrary code with kernel privileges.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apple Kernel 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apple Mac Pro等都是美国苹果（Apple）公司的产品。Apple Mac Pro是一款电脑。Apple MacBook Air是一款笔记本电脑。Apple MacBook Pro是一款笔记本电脑。 Apple Kernel 存在安全漏洞，该漏洞允许应用程序可能能够使用内核特权执行任意代码。以下产品及版本受到影响：Mac Pro (2013 and later), MacBook Air (2013 and later), MacBook Pro (Late 2013 and later), M

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Apple	macOS	unspecified ~ 11.0	-

II. Public POCs for CVE-2020-27904

#	POC Description	Source Link	Shenlong Link
1	Demo exploit code for CVE-2020-27904, a tfp0 bug.	https://github.com/pattern-f/xattr-oob-swap	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-27904

Please Login to view more intelligence information

https://support.apple.com/kb/HT212147x_refsource_CONFIRM
https://support.apple.com/en-us/HT211931x_refsource_MISC
http://seclists.org/fulldisclosure/2020/Dec/32mailing-listx_refsource_FULLDISC
http://seclists.org/fulldisclosure/2021/Feb/14mailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2020-27904

New Vulnerabilities

Product: macOS

Vendor: Apple

V. Comments for CVE-2020-27904

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2020-27904

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-27904

III. Intelligence Information for CVE-2020-27904

New Vulnerabilities

V. Comments for CVE-2020-27904

Leave a comment