CVE-2020-20095
First published: Wed Mar 23 2022(Updated: )
iMessage (Messages app) iOS 12.4 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iMessage | <=12.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this iMessage vulnerability?
The vulnerability ID for this iMessage vulnerability is CVE-2020-20095.
What is the severity of CVE-2020-20095?
The severity of CVE-2020-20095 is medium with a CVSS score of 6.5.
Which version of iOS is affected by CVE-2020-20095?
iOS 12.4 and prior versions are affected by CVE-2020-20095.
What is the impact of CVE-2020-20095?
CVE-2020-20095 allows URI spoofing via specially crafted messages, resulting in potential phishing attacks.
Are there any known fixes for CVE-2020-20095?
Currently, there are no known fixes for CVE-2020-20095. It is recommended to exercise caution when interacting with URI messages in iMessage.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apple
- canonical/apple imessage
- version/apple imessage/12.4