What is CVE-2020-27935?

CVE-2020-27935 is a vulnerability in XNU that has multiple issues addressed with improved logic.

Which software versions are affected by CVE-2020-27935?

CVE-2020-27935 affects multiple versions of Apple iOS, iPadOS, tvOS, macOS Big Sur, and watchOS.

How can I fix CVE-2020-27935?

To fix CVE-2020-27935, update your Apple iOS, iPadOS, tvOS, macOS Big Sur, or watchOS to the recommended versions provided by Apple.

Where can I find more information about CVE-2020-27935?

More information about CVE-2020-27935 can be found on Apple's support website using the provided references: [link_1](https://support.apple.com/en-us/HT211929), [link_2](https://support.apple.com/en-us/HT211930), [link_3](https://support.apple.com/en-us/HT211928).

Vulnerability/
CVE-2020-27935

medium

6.3

5/11/2020

2/4/2021

4/8/2024

CVE-2020-27935

First published: Thu Nov 05 2020(Updated: )

Multiple issues were addressed with improved logic. This issue is fixed in iOS 14.2 and iPadOS 14.2, macOS Big Sur 11.0.1, watchOS 7.1, tvOS 14.2. A sandboxed process may be able to circumvent sandbox restrictions.

Credit: Lior Halphon @LIJI32 product-security@apple.com

Affected Software	Affected Version	How to fix
Apple macOS	<11.0.1	11.0.1
tvOS	<14.2	14.2
Apple iOS, iPadOS, and watchOS	<14.2	14.2
Apple iOS, iPadOS, and watchOS	<14.2	14.2
Apple iOS, iPadOS, and watchOS	<7.1	7.1
Apple iOS, iPadOS, and watchOS	<14.2
iOS	<14.2
Apple iOS and macOS	<11.0.1
tvOS	<14.2
Apple iOS, iPadOS, and watchOS	<7.1

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT211928 (Advisory)
https://support.apple.com/en-us/HT211929 (Advisory)
https://support.apple.com/en-us/HT211930 (Advisory)
https://support.apple.com/en-us/HT211931 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2020-27914
CVE-2020-27915
CVE-2020-27903
CVE-2020-27910
CVE-2020-27916
CVE-2020-9943
CVE-2020-9944
CVE-2020-27906
CVE-2020-27945
CVE-2020-27908
CVE-2020-27909
CVE-2020-9960
CVE-2020-10017
CVE-2020-9949
CVE-2020-9897
CVE-2020-9883
CVE-2020-10003
CVE-2020-27922
CVE-2020-9999
CVE-2020-27937
CVE-2020-9965
CVE-2020-9966
CVE-2020-27894
CVE-2020-36615
CVE-2021-1790
CVE-2021-1775
CVE-2020-29629
CVE-2020-27942
CVE-2020-9962
CVE-2020-27952
CVE-2020-9956
CVE-2020-27931
CVE-2020-27930
CVE-2020-27927
CVE-2020-29639
CVE-2020-10002
CVE-2020-9978
CVE-2020-9955
CVE-2020-27924
CVE-2020-27912
CVE-2020-27923
CVE-2020-9876
CVE-2020-10015
CVE-2020-27897
CVE-2020-27907
CVE-2020-27919
CVE-2020-9967
CVE-2020-9975
CVE-2020-27921
CVE-2020-27904
CVE-2019-14899
CVE-2020-27950
CVE-2020-9974
CVE-2020-10016
CVE-2020-27932
CVE-2020-27917
CVE-2020-27920
CVE-2020-27911
CVE-2020-9971
CVE-2020-10014
CVE-2020-10010
CVE-2020-9941
CVE-2020-9988
CVE-2020-9989
CVE-2020-10011
CVE-2020-13524
CVE-2020-10004
CVE-2020-9996
CVE-2020-27901
CVE-2020-27900
CVE-2019-20838
CVE-2020-14155
CVE-2020-10007
CVE-2020-27896
CVE-2020-9963
CVE-2020-10012
CVE-2020-10663
CVE-2020-9945
CVE-2020-9977
CVE-2020-9942
CVE-2020-9987
CVE-2021-1803
CVE-2020-9969
CVE-2020-27893
CVE-2021-1755
CVE-2020-10005
CVE-2020-9991
CVE-2020-9849
CVE-2020-15358
CVE-2020-13631
CVE-2020-13434
CVE-2020-13435
CVE-2020-13630
CVE-2020-27899
CVE-2020-10009
CVE-2020-10008
CVE-2020-27918
CVE-2020-9947
CVE-2020-9950
CVE-2020-27898
CVE-2020-27935
CVE-2020-10006
CVE-2020-27905
CVE-2020-27925
CVE-2020-27902
CVE-2020-27926

Frequently Asked Questions

What is CVE-2020-27935?
CVE-2020-27935 is a vulnerability in XNU that has multiple issues addressed with improved logic.
Which software versions are affected by CVE-2020-27935?
CVE-2020-27935 affects multiple versions of Apple iOS, iPadOS, tvOS, macOS Big Sur, and watchOS.
How can I fix CVE-2020-27935?
To fix CVE-2020-27935, update your Apple iOS, iPadOS, tvOS, macOS Big Sur, or watchOS to the recommended versions provided by Apple.
Where can I find more information about CVE-2020-27935?
More information about CVE-2020-27935 can be found on Apple's support website using the provided references: [link_1](https://support.apple.com/en-us/HT211929), [link_2](https://support.apple.com/en-us/HT211930), [link_3](https://support.apple.com/en-us/HT211928).

agent/type
agent/first-publish-date
agent/references
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/trending
agent/source
collector/apple-support
agent/software-canonical-lookup-request
agent/author
agent/tags
agent/softwarecombine
collector/nvd-index
vendor/apple
canonical/apple macos
canonical/tvos
canonical/apple ios, ipados, and watchos
canonical/ios
canonical/apple ios and macos