Out-of-bounds write in iPadOS

#VU30265 Out-of-bounds write in iPadOS

Cybersecurity Help s.r.o.

Published: 2020-06-09 | Updated: 2022-02-20

Vulnerability identifier: #VU30265

Vulnerability risk: High

CVSSv3.1: 8.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2020-9818

CWE-ID: CWE-787

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
iPadOS
Operating systems & Components / Operating system

Vendor: Apple Inc.

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5. Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination.

Mitigation
Install update from vendor's website.

Vulnerable software versions

iPadOS: 13.1.1 - 13.1.3, 13.2 - 13.2.3, 13.3 - 13.3.1, 13.4 - 13.4.1

External links
http://support.apple.com/HT211168
http://support.apple.com/HT211169
http://support.apple.com/HT211175

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Apple iPadOS