CVE-2020-27940
First published: Mon Nov 09 2020(Updated: )
Apple TV app. This issue was addressed with improved file handling.
Credit: product-security@apple.com Razvan Sima (0xraaz)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Apple Tv | <5.1 | |
| Apple Apple TV app for Fire OS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212197 (Advisory)
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2020-27940.
What is the severity of CVE-2020-27940?
The severity of CVE-2020-27940 is medium with a score of 4.3.
What is the description of CVE-2020-27940?
CVE-2020-27940 is a vulnerability in the Apple TV app for Fire OS that allowed an attacker with file system access to modify scripts used by the app. This issue has been addressed with improved file handling in the Apple TV app.
Which software versions are affected by CVE-2020-27940?
Apple TV app for Fire OS versions up to and excluding 5.1 are affected by CVE-2020-27940.
How is CVE-2020-27940 fixed?
CVE-2020-27940 is fixed in Apple TV app for Fire OS 6.1.0.6A142:7.1.0.
- collector/nvd-index
- collector/apple-support
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- agent/references
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple apple tv
- canonical/apple apple tv app for fire os