Apple iCloud for Windows 信息泄露漏洞
| CNNVD-ID编号 | CNNVD-202011-1350 | CVE编号 | CVE-2020-9849 |
| 发布时间 | 2020-11-13 | 更新时间 | 2020-12-24 |
| 漏洞类型 | 信息泄露 | 漏洞来源 | N/A |
| 危险等级 | 中危 | 威胁类型 | 远程 |
| 厂商 | N/A | ||
漏洞介绍
Apple iCloud for Windows是美国苹果(Apple)公司的一款基于Windows平台的云服务。该产品支持存储音乐、照片、App和联系人等。
Apple iCloud for Windows11.5之前版本中的 SQLite 存在安全漏洞,该漏洞允许远程攻击者可能会泄漏内存。以下产品及版本受到影响: Mac Pro (2013 and later), MacBook Air (2013 and later), MacBook Pro (Late 2013 and later), Mac mini (2014 and later), iMac (2014 and later), MacBook (2015 and later), iMac Pro (all models)。
漏洞补丁
目前厂商已发布升级了Apple iCloud for Windows 信息泄露漏洞的补丁,Apple iCloud for Windows 信息泄露漏洞的补丁获取链接:
https://support.apple.com/en-us/HT211931
参考网址
来源:MISC
链接:https://support.apple.com/en-us/HT211843
来源:MISC
链接:https://support.apple.com/en-us/HT211931
来源:MISC
链接:https://support.apple.com/en-us/HT211952
来源:MISC
链接:https://support.apple.com/en-us/HT211844
来源:MISC
链接:https://support.apple.com/en-us/HT211935
来源:MISC
链接:https://support.apple.com/en-us/HT211850
来源:FULLDISC
链接:http://seclists.org/fulldisclosure/2020/Dec/32
来源:support.apple.com
链接:https://support.apple.com/en-us/HT211935
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/Apple-macOS-11-multiple-vulnerabilities-33899
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/160061/Apple-Security-Advisory-2020-11-13-3.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3181.2/
来源:nvd.nist.gov
链接:https://nvd.nist.gov/vuln/detail/CVE-2020-9849
受影响实体
暂无
信息来源
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-202011-1350
评论