Description
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrary code execution.
Published: 2020-04-01
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-4681-1 webkit2gtk security update
EUVD EUVD EUVD-2020-25165 A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrary code execution.
History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00498}

 epss

{'score': 0.00363}

Subscriptions

Apple Icloud Ipad Os Iphone Os Itunes Safari Tvos Watchos
Redhat Enterprise Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published:

Updated: 2024-08-04T07:52:19.674Z

Reserved: 2019-12-18T00:00:00.000Z

Link: CVE-2020-3900

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-04-01T18:15:16.520

Modified: 2024-11-21T05:31:55.480

Link: CVE-2020-3900

cve-icon Redhat

Severity : Moderate

Publid Date: 2020-04-27T00:00:00Z

Links: CVE-2020-3900 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses