What is CVE-2020-13524?

CVE-2020-13524 is a vulnerability in Model I/O that allows for an out-of-bounds read.

What is the severity of CVE-2020-13524?

The severity of CVE-2020-13524 is not specified in the provided information.

How does CVE-2020-13524 affect Apple iOS?

CVE-2020-13524 affects Apple iOS up to version 14.2.

How does CVE-2020-13524 affect Apple iPadOS?

CVE-2020-13524 affects Apple iPadOS up to version 14.2.

How does CVE-2020-13524 affect Apple macOS Big Sur?

CVE-2020-13524 affects Apple macOS Big Sur up to version 11.0.1 or 11.1, depending on the version.

How does CVE-2020-13524 affect Apple Catalina?

There is no information provided about how CVE-2020-13524 affects Apple Catalina.

How does CVE-2020-13524 affect Apple Mojave?

There is no information provided about how CVE-2020-13524 affects Apple Mojave.

How do I fix CVE-2020-13524?

To fix CVE-2020-13524, update to the latest version of the affected software, as specified in the provided links.

Where can I find more information about CVE-2020-13524?

More information about CVE-2020-13524 can be found in the provided references: [Link 1](https://support.apple.com/en-us/HT211929), [Link 2](https://support.apple.com/en-us/HT212011), [Link 3](https://support.apple.com/en-us/HT211931).

What is the CWE of CVE-2020-13524?

The CWE of CVE-2020-13524 is 20.

Vulnerability/
CVE-2020-13524

medium

6.3

CWE

20 787 119

5/11/2020

3/12/2020

11/5/2023

CVE-2020-13524: Input Validation

First published: Thu Nov 05 2020(Updated: )

Model I/O. An out-of-bounds read was addressed with improved input validation.

Credit: Aleksandar Nikolic Cisco TalosAleksandar Nikolic Cisco TalosAleksandar Nikolic Cisco Talos talos-cna@cisco.com

Affected Software	Affected Version	How to fix
Apple iOS	<14.2	14.2
Apple iPadOS	<14.2	14.2
Apple macOS Big Sur	<11.0.1	11.0.1
Pixar OpenUSD	=20.05
Apple Mac OS X	>=10.14.0<10.14.6
Apple Mac OS X	>=10.15<10.15.7
Apple Mac OS X	=10.14.6-security_update_2019-001
Apple Mac OS X	=10.14.6-security_update_2019-002
Apple Mac OS X	=10.14.6-security_update_2019-004
Apple Mac OS X	=10.14.6-security_update_2019-005
Apple Mac OS X	=10.14.6-security_update_2019-006
Apple Mac OS X	=10.14.6-security_update_2019-007
Apple Mac OS X	=10.14.6-security_update_2020-001
Apple Mac OS X	=10.14.6-security_update_2020-002
Apple Mac OS X	=10.14.6-security_update_2020-003
Apple Mac OS X	=10.14.6-security_update_2020-004
Apple Mac OS X	=10.14.6-security_update_2020-005
Apple Mac OS X	=10.14.6-security_update_2020-006
Apple Mac OS X	=10.14.6-supplemental_update
Apple Mac OS X	=10.14.6-supplemental_update_2
Apple Mac OS X	=10.15.7-security_update_2020-001
Apple macOS	>=11.0<11.1
Apple macOS Big Sur	<11.1	11.1
Apple Catalina
Apple Mojave

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2020-27910
CVE-2020-27916
CVE-2020-27925
CVE-2020-10017
CVE-2020-27908
CVE-2020-27909
CVE-2020-9897
CVE-2020-27922
CVE-2020-10003
CVE-2020-27930
CVE-2020-27927
CVE-2020-10002
CVE-2020-27924
CVE-2020-27912
CVE-2020-27923
CVE-2020-27905
CVE-2020-27950
CVE-2020-9974
CVE-2020-10016
CVE-2020-27932
CVE-2020-27902
CVE-2020-27917
CVE-2020-27920
CVE-2020-27911
CVE-2020-27926
CVE-2020-10010
CVE-2020-10004
CVE-2020-13524
CVE-2020-10011
CVE-2020-27899
CVE-2020-27918
CVE-2020-27935
CVE-2020-27914
CVE-2020-27915
CVE-2020-27903
CVE-2020-9943
CVE-2020-9944
CVE-2020-27906
CVE-2020-27945
CVE-2020-9960
CVE-2020-9949
CVE-2020-9883
CVE-2020-9999
CVE-2020-27937
CVE-2020-9965
CVE-2020-9966
CVE-2020-27894
CVE-2020-36615
CVE-2021-1790
CVE-2021-1775
CVE-2020-29629
CVE-2020-27942
CVE-2020-9962
CVE-2020-27952
CVE-2020-9956
CVE-2020-27931
CVE-2020-29639
CVE-2020-9978
CVE-2020-9955
CVE-2020-9876
CVE-2020-10015
CVE-2020-27897
CVE-2020-27907
CVE-2020-27919
CVE-2020-9967
CVE-2020-9975
CVE-2020-27921
CVE-2020-27904
CVE-2019-14899
CVE-2020-9971
CVE-2020-10014
CVE-2020-9941
CVE-2020-9988
CVE-2020-9989
CVE-2020-9996
CVE-2020-27901
CVE-2020-27900
CVE-2019-20838
CVE-2020-14155
CVE-2020-10007
CVE-2020-27896
CVE-2020-9963
CVE-2020-10012
CVE-2020-10663
CVE-2020-9945
CVE-2020-9977
CVE-2020-9942
CVE-2020-9987
CVE-2021-1803
CVE-2020-9969
CVE-2020-27893
CVE-2021-1755
CVE-2020-10005
CVE-2020-9991
CVE-2020-9849
CVE-2020-15358
CVE-2020-13631
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-10009
CVE-2020-10008
CVE-2020-9947
CVE-2020-9950
CVE-2020-27898
CVE-2020-10006
CVE-2020-27936
CVE-2020-27941
CVE-2020-29621
CVE-2020-29610
CVE-2020-27948
CVE-2020-10001
CVE-2020-27946
CVE-2020-27943
CVE-2020-27944
CVE-2020-29624
CVE-2020-29608
CVE-2020-27947
CVE-2020-29612
CVE-2020-27939
CVE-2020-29625
CVE-2020-29615
CVE-2020-29616
CVE-2020-29618
CVE-2020-29611
CVE-2020-29617
CVE-2020-29619
CVE-2020-27949
CVE-2020-29620
CVE-2020-29633
CVE-2020-29614
CVE-2020-13520
CVE-2020-9972
CVE-2020-27938
CVE-2020-29623
CVE-2020-15969

Frequently Asked Questions

What is CVE-2020-13524?
CVE-2020-13524 is a vulnerability in Model I/O that allows for an out-of-bounds read.
What is the severity of CVE-2020-13524?
The severity of CVE-2020-13524 is not specified in the provided information.
How does CVE-2020-13524 affect Apple iOS?
CVE-2020-13524 affects Apple iOS up to version 14.2.
How does CVE-2020-13524 affect Apple iPadOS?
CVE-2020-13524 affects Apple iPadOS up to version 14.2.
How does CVE-2020-13524 affect Apple macOS Big Sur?
CVE-2020-13524 affects Apple macOS Big Sur up to version 11.0.1 or 11.1, depending on the version.
How does CVE-2020-13524 affect Apple Catalina?
There is no information provided about how CVE-2020-13524 affects Apple Catalina.
How does CVE-2020-13524 affect Apple Mojave?
There is no information provided about how CVE-2020-13524 affects Apple Mojave.
How do I fix CVE-2020-13524?
To fix CVE-2020-13524, update to the latest version of the affected software, as specified in the provided links.
Where can I find more information about CVE-2020-13524?
More information about CVE-2020-13524 can be found in the provided references: [Link 1](https://support.apple.com/en-us/HT211929), [Link 2](https://support.apple.com/en-us/HT212011), [Link 3](https://support.apple.com/en-us/HT211931).
What is the CWE of CVE-2020-13524?
The CWE of CVE-2020-13524 is 20.

collector/apple-support
agent/software-canonical-lookup-request
collector/nvd-index
agent/software-canonical-lookup
agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
vendor/apple
canonical/apple ios
canonical/apple ipados
canonical/apple macos big sur
vendor/pixar
canonical/pixar openusd
version/pixar openusd/20.05
canonical/apple mac os x
version/apple mac os x/10.14.0
version/apple mac os x/10.15
version/apple mac os x/10.14.6-security_update_2019-001
version/apple mac os x/10.14.6-security_update_2019-002
version/apple mac os x/10.14.6-security_update_2019-004
version/apple mac os x/10.14.6-security_update_2019-005
version/apple mac os x/10.14.6-security_update_2019-006
version/apple mac os x/10.14.6-security_update_2019-007
version/apple mac os x/10.14.6-security_update_2020-001
version/apple mac os x/10.14.6-security_update_2020-002
version/apple mac os x/10.14.6-security_update_2020-003
version/apple mac os x/10.14.6-security_update_2020-004
version/apple mac os x/10.14.6-security_update_2020-005
version/apple mac os x/10.14.6-security_update_2020-006
version/apple mac os x/10.14.6-supplemental_update
version/apple mac os x/10.14.6-supplemental_update_2
version/apple mac os x/10.15.7-security_update_2020-001
canonical/apple macos
version/apple macos/11.0
canonical/apple catalina
canonical/apple mojave