What is CVE-2020-9856?

CVE-2020-9856 is a vulnerability in the CVMS system that allows for unauthorized access.

How does CVE-2020-9856 affect macOS Catalina?

CVE-2020-9856 affects macOS Catalina versions up to and including 10.15.5.

Is Mojave affected by CVE-2020-9856?

Yes, Mojave is also affected by CVE-2020-9856.

What is the severity of CVE-2020-9856?

The severity of CVE-2020-9856 is not specified.

How can I fix CVE-2020-9856?

CVE-2020-9856 has been addressed with improved checks. Update your system to the latest version available from Apple.

Vulnerability/
CVE-2020-9856

medium

5.3

26/5/2020

9/6/2020

4/8/2024

CVE-2020-9856

First published: Tue May 26 2020(Updated: )

CVMS. This issue was addressed with improved checks.

Credit: @jinmo123 @setuid0x0_ @insu_yun_en Trend Micro product-security@apple.com

Affected Software	Affected Version	How to fix
macOS Catalina	<10.15.5	10.15.5
macOS Mojave
macOS High Sierra
Apple iOS and macOS	>=10.13<10.13.6
Apple iOS and macOS	>=10.14<10.14.6
Apple iOS and macOS	>=10.15<10.15.5
Apple iOS and macOS	=10.13.6
Apple iOS and macOS	=10.13.6
Apple iOS and macOS	=10.13.6-security_update_2018-002
Apple iOS and macOS	=10.13.6-security_update_2018-003
Apple iOS and macOS	=10.13.6-security_update_2019-001
Apple iOS and macOS	=10.13.6-security_update_2019-002
Apple iOS and macOS	=10.13.6-security_update_2019-003
Apple iOS and macOS	=10.13.6-security_update_2019-004
Apple iOS and macOS	=10.13.6-security_update_2019-005
Apple iOS and macOS	=10.13.6-security_update_2019-006
Apple iOS and macOS	=10.13.6-security_update_2019-007
Apple iOS and macOS	=10.13.6-security_update_2020-001
Apple iOS and macOS	=10.13.6-security_update_2020-002
Apple iOS and macOS	=10.14.6
Apple iOS and macOS	=10.14.6
Apple iOS and macOS	=10.14.6-security_update_2019-001
Apple iOS and macOS	=10.14.6-security_update_2019-002
Apple iOS and macOS	=10.14.6-security_update_2019-004
Apple iOS and macOS	=10.14.6-security_update_2019-005
Apple iOS and macOS	=10.14.6-security_update_2019-006
Apple iOS and macOS	=10.14.6-security_update_2019-007
Apple iOS and macOS	=10.14.6-security_update_2020-001
Apple iOS and macOS	=10.14.6-security_update_2020-002
Apple iOS and macOS	=10.14.6-security_update_2020-003

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

HT211170

Frequently Asked Questions

What is CVE-2020-9856?
CVE-2020-9856 is a vulnerability in the CVMS system that allows for unauthorized access.
How does CVE-2020-9856 affect macOS Catalina?
CVE-2020-9856 affects macOS Catalina versions up to and including 10.15.5.
Is Mojave affected by CVE-2020-9856?
Yes, Mojave is also affected by CVE-2020-9856.
What is the severity of CVE-2020-9856?
The severity of CVE-2020-9856 is not specified.
How can I fix CVE-2020-9856?
CVE-2020-9856 has been addressed with improved checks. Update your system to the latest version available from Apple.

agent/type
agent/first-publish-date
agent/references
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/trending
agent/source
agent/tags
collector/apple-support
agent/software-canonical-lookup-request
collector/nvd-index
agent/softwarecombine
vendor/apple
canonical/macos catalina
canonical/macos mojave
canonical/macos high sierra
canonical/apple ios and macos
version/apple ios and macos/10.13
version/apple ios and macos/10.14
version/apple ios and macos/10.15
version/apple ios and macos/10.13.6
version/apple ios and macos/10.13.6-security_update_2018-002
version/apple ios and macos/10.13.6-security_update_2018-003
version/apple ios and macos/10.13.6-security_update_2019-001
version/apple ios and macos/10.13.6-security_update_2019-002
version/apple ios and macos/10.13.6-security_update_2019-003
version/apple ios and macos/10.13.6-security_update_2019-004
version/apple ios and macos/10.13.6-security_update_2019-005
version/apple ios and macos/10.13.6-security_update_2019-006
version/apple ios and macos/10.13.6-security_update_2019-007
version/apple ios and macos/10.13.6-security_update_2020-001
version/apple ios and macos/10.13.6-security_update_2020-002
version/apple ios and macos/10.14.6
version/apple ios and macos/10.14.6-security_update_2019-001
version/apple ios and macos/10.14.6-security_update_2019-002
version/apple ios and macos/10.14.6-security_update_2019-004
version/apple ios and macos/10.14.6-security_update_2019-005
version/apple ios and macos/10.14.6-security_update_2019-006
version/apple ios and macos/10.14.6-security_update_2019-007
version/apple ios and macos/10.14.6-security_update_2020-001
version/apple ios and macos/10.14.6-security_update_2020-002
version/apple ios and macos/10.14.6-security_update_2020-003