CVE-2020-9920: Path Traversal

Reference Links

• https://support.apple.com/en-us/HT211288 (Advisory)
• https://support.apple.com/en-us/HT211289 (Advisory)
• https://support.apple.com/en-us/HT211291 (Advisory)
• https://support.apple.com/kb/HT211288
• https://support.apple.com/kb/HT211289
• https://support.apple.com/kb/HT211291

Parent vulnerabilities

(Appears in the following advisories)

• HT211289
• HT211291
• HT211288

Peer vulnerabilities

(Found alongside the following vulnerabilities)

• CVE-2020-9927
• CVE-2020-9884
• CVE-2020-9889
• CVE-2020-9888
• CVE-2020-9890
• CVE-2020-9891
• CVE-2020-9928
• CVE-2020-9929
• CVE-2020-9870
• CVE-2020-9866
• CVE-2020-9869
• CVE-2020-9949
• CVE-2020-9934
• CVE-2020-9883
• CVE-2020-9865
• CVE-2020-9900
• CVE-2020-9980
• CVE-2020-9799
• CVE-2020-9913
• CVE-2020-27933
• CVE-2020-11758
• CVE-2020-11759
• CVE-2020-11760
• CVE-2020-11761
• CVE-2020-11762
• CVE-2020-11763
• CVE-2020-11764
• CVE-2020-11765
• CVE-2020-9871
• CVE-2020-9872
• CVE-2020-9874
• CVE-2020-9879
• CVE-2020-9936
• CVE-2020-9937
• CVE-2020-9919
• CVE-2020-9876
• CVE-2020-9873
• CVE-2020-9938
• CVE-2020-9877
• CVE-2020-9875
• CVE-2020-9984
• CVE-2020-9887
• CVE-2020-9908
• CVE-2020-9990
• CVE-2020-9921
• CVE-2019-14899
• CVE-2020-9904
• CVE-2020-9924
• CVE-2020-9892
• CVE-2020-9863
• CVE-2020-9902
• CVE-2020-9905
• CVE-2020-9997
• CVE-2020-9926
• CVE-2020-9994
• CVE-2020-9935
• CVE-2019-19906
• CVE-2020-9920
• CVE-2020-9922
• CVE-2020-9885
• CVE-2020-9878
• CVE-2020-9880
• CVE-2020-9881
• CVE-2020-9882
• CVE-2020-9940
• CVE-2020-9985
• CVE-2020-12243
• CVE-2020-10878
• CVE-2020-12723
• CVE-2014-9512
• CVE-2020-9930
• CVE-2020-9939
• CVE-2020-9864
• CVE-2020-9868
• CVE-2020-9854
• CVE-2020-9901
• CVE-2019-20807
• CVE-2020-9898
• CVE-2020-9918
• CVE-2020-9899
• CVE-2020-9906
• CVE-2020-9933
• CVE-2020-9923
• CVE-2020-9909
• CVE-2020-9894
• CVE-2020-9915
• CVE-2020-9925
• CVE-2020-9893
• CVE-2020-9895
• CVE-2020-9910
• CVE-2020-9916
• CVE-2020-9862
• CVE-2020-6514
• CVE-2020-9907
• CVE-2020-9931
• CVE-2020-9914
• CVE-2020-9903
• CVE-2020-9911
• CVE-2020-9917

Frequently Asked Questions

• What is the vulnerability ID?

  The vulnerability ID is CVE-2020-9920.

• What is the title of the vulnerability?

  The title of the vulnerability is 'Mail. A path handling issue was addressed with improved validation.'

• What is the description of the vulnerability?

  The vulnerability involves a path handling issue in the Mail application, which has been fixed with improved validation.

• Which software versions are affected by CVE-2020-9920?

  CVE-2020-9920 affects macOS Catalina version up to 10.15.6, Apple Mojave, Apple High Sierra, iOS version up to 13.6, iPadOS version up to 13.6, and watchOS version up to 6.2.8.

• How can I fix CVE-2020-9920?

  To fix CVE-2020-9920, ensure that you have updated your software to the latest version provided by Apple.

• Where can I find more information about CVE-2020-9920?

  You can find more information about CVE-2020-9920 on the Apple support website at the following URLs: [https://support.apple.com/en-us/HT211289](https://support.apple.com/en-us/HT211289), [https://support.apple.com/en-us/HT211288](https://support.apple.com/en-us/HT211288), [https://support.apple.com/en-us/HT211291](https://support.apple.com/en-us/HT211291).