CVE-2020-3848: Input Validation

Reference Links

• https://support.apple.com/en-us/HT210919 (Advisory)
• https://support.apple.com/HT210919

Parent vulnerabilities

(Appears in the following advisories)

• HT210919

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2020-3877
• CVE-2019-11043
• CVE-2020-3857
• CVE-2020-3866
• CVE-2020-3848
• CVE-2020-3849
• CVE-2020-3850
• CVE-2020-3847
• CVE-2020-3835
• CVE-2020-3863
• CVE-2020-9774
• CVE-2020-3827
• CVE-2020-3826
• CVE-2020-3870
• CVE-2020-3878
• CVE-2020-3880
• CVE-2020-3845
• CVE-2020-3837
• CVE-2020-3851
• CVE-2020-3840
• CVE-2020-3875
• CVE-2020-3872
• CVE-2020-3853
• CVE-2020-3836
• CVE-2020-3842
• CVE-2020-3871
• CVE-2020-3846
• CVE-2020-3856
• CVE-2020-3829
• CVE-2020-3830
• CVE-2020-3854
• CVE-2019-18634
• CVE-2020-3855
• CVE-2020-3839
• CVE-2020-3843
• CVE-2020-3838

Frequently Asked Questions

• What is CVE-2020-3848?

  CVE-2020-3848 refers to a memory corruption issue in CoreBluetooth that has been fixed with improved input validation.

• Which software versions are affected by CVE-2020-3848?

  CVE-2020-3848 affects macOS Catalina version 10.15.3, Mojave, and High Sierra.

• What is the severity of CVE-2020-3848?

  The severity of CVE-2020-3848 is not specified in the given information.

• How can I fix the vulnerability identified by CVE-2020-3848?

  To fix the vulnerability, make sure you update to macOS Catalina version 10.15.3 (or newer), as well as the latest versions of Mojave and High Sierra if applicable.

• Where can I find more information about CVE-2020-3848?

  You can find more information about CVE-2020-3848 on the Apple support website at the following link: [https://support.apple.com/en-us/HT210919]