What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2020-9994.

What is the affected software?

The affected software includes macOS Catalina, Mojave, High Sierra, iOS, iPadOS, watchOS, and tvOS.

What is the severity of CVE-2020-9994?

The severity of CVE-2020-9994 has not been specified.

Where can I find more information about this vulnerability?

You can find more information about this vulnerability at the following references: [https://support.apple.com/en-us/HT211289](https://support.apple.com/en-us/HT211289), [https://support.apple.com/en-us/HT211175](https://support.apple.com/en-us/HT211175), [https://support.apple.com/en-us/HT211170](https://support.apple.com/en-us/HT211170).

Vulnerability/
CVE-2020-9994

high

7.1

18/5/2020

22/10/2020

4/8/2024

CVE-2020-9994

Q: How was the path handling issue addressed?

The path handling issue was addressed with improved validation.

First published: Mon May 18 2020(Updated: )

libxpc. A path handling issue was addressed with improved validation.

Credit: Apple Apple Apple Apple Apple product-security@apple.com

Affected Software	Affected Version	How to fix
tvOS	<13.4.5	13.4.5
macOS Catalina	<10.15.6	10.15.6
macOS Mojave
macOS High Sierra
Apple iOS, iPadOS, and watchOS	<13.5	13.5
Apple iOS, iPadOS, and watchOS	<13.5	13.5
Apple iOS, iPadOS, and watchOS	<6.2.5	6.2.5
Apple iOS, iPadOS, and watchOS	<13.5
iOS	<13.5
Apple iOS and macOS	<10.15.5
tvOS	<13.4.5
Apple iOS, iPadOS, and watchOS	<6.2.5

Never miss a vulnerability like this again

Parent vulnerabilities

(Appears in the following advisories)

Peer vulnerabilities

(Found alongside the following vulnerabilities)

CVE-2020-9827
CVE-2020-9842
CVE-2020-9815
CVE-2020-9791
CVE-2020-9829
CVE-2020-9816
CVE-2020-3878
CVE-2020-9789
CVE-2020-9790
CVE-2020-9837
CVE-2020-9821
CVE-2020-9797
CVE-2020-9852
CVE-2020-9795
CVE-2020-9808
CVE-2020-9811
CVE-2020-9812
CVE-2020-9813
CVE-2020-9814
CVE-2020-9809
CVE-2020-9994
CVE-2014-9512
CVE-2020-9854
CVE-2020-9794
CVE-2020-9839
CVE-2020-9805
CVE-2020-9802
CVE-2020-9850
CVE-2020-9843
CVE-2020-9803
CVE-2020-9806
CVE-2020-9807
CVE-2020-9800
CVE-2019-20503
CVE-2020-9927
CVE-2020-9884
CVE-2020-9889
CVE-2020-9888
CVE-2020-9890
CVE-2020-9891
CVE-2020-9928
CVE-2020-9929
CVE-2020-9870
CVE-2020-9866
CVE-2020-9869
CVE-2020-9949
CVE-2020-9934
CVE-2020-9883
CVE-2020-9865
CVE-2020-9900
CVE-2020-9980
CVE-2020-9799
CVE-2020-9913
CVE-2020-27933
CVE-2020-11758
CVE-2020-11759
CVE-2020-11760
CVE-2020-11761
CVE-2020-11762
CVE-2020-11763
CVE-2020-11764
CVE-2020-11765
CVE-2020-9871
CVE-2020-9872
CVE-2020-9874
CVE-2020-9879
CVE-2020-9936
CVE-2020-9937
CVE-2020-9919
CVE-2020-9876
CVE-2020-9873
CVE-2020-9938
CVE-2020-9877
CVE-2020-9875
CVE-2020-9984
CVE-2020-9887
CVE-2020-9908
CVE-2020-9990
CVE-2020-9921
CVE-2019-14899
CVE-2020-9904
CVE-2020-9924
CVE-2020-9892
CVE-2020-9863
CVE-2020-9902
CVE-2020-9905
CVE-2020-9997
CVE-2020-9926
CVE-2020-9935
CVE-2019-19906
CVE-2020-9920
CVE-2020-9922
CVE-2020-9885
CVE-2020-9878
CVE-2020-9880
CVE-2020-9881
CVE-2020-9882
CVE-2020-9940
CVE-2020-9985
CVE-2020-12243
CVE-2020-10878
CVE-2020-12723
CVE-2020-9930
CVE-2020-9939
CVE-2020-9864
CVE-2020-9868
CVE-2020-9901
CVE-2019-20807
CVE-2020-9898
CVE-2020-9918
CVE-2020-9899
CVE-2020-9906
CVE-2020-9772
CVE-2020-9826
CVE-2020-9804
CVE-2020-9831
CVE-2020-9779
CVE-2020-3882
CVE-2020-9828
CVE-2020-9856
CVE-2020-9847
CVE-2020-9855
CVE-2020-9822
CVE-2020-9796
CVE-2019-14868
CVE-2020-9857
CVE-2020-9817
CVE-2020-9851
CVE-2020-9793
CVE-2020-9825
CVE-2020-9771
CVE-2020-9788
CVE-2020-9824
CVE-2020-9810
CVE-2020-9792
CVE-2020-9844
CVE-2020-9830
CVE-2020-9834
CVE-2020-9833
CVE-2020-9832
CVE-2020-9841
CVE-2019-20044
CVE-2020-6616
CVE-2020-9838
CVE-2020-9835
CVE-2020-9820
CVE-2020-9819
CVE-2020-9818
CVE-2020-9823
CVE-2020-9848

Frequently Asked Questions

What is the vulnerability ID of this issue?
The vulnerability ID is CVE-2020-9994.
What is the affected software?
The affected software includes macOS Catalina, Mojave, High Sierra, iOS, iPadOS, watchOS, and tvOS.
How was the path handling issue addressed?
The path handling issue was addressed with improved validation.
What is the severity of CVE-2020-9994?
The severity of CVE-2020-9994 has not been specified.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following references: [https://support.apple.com/en-us/HT211289](https://support.apple.com/en-us/HT211289), [https://support.apple.com/en-us/HT211175](https://support.apple.com/en-us/HT211175), [https://support.apple.com/en-us/HT211170](https://support.apple.com/en-us/HT211170).

agent/type
agent/first-publish-date
agent/references
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/trending
agent/source
collector/apple-support
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-index
vendor/apple
canonical/tvos
canonical/macos catalina
canonical/macos mojave
canonical/macos high sierra
canonical/apple ios, ipados, and watchos
canonical/ios
canonical/apple ios and macos

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.