Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2020-10014

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to break out of its sandbox.

  • Published: Dec 8, 2020
  • Updated: Apr 13, 2023
  • CVE: CVE-2020-10014
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.3
  • AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
apple / macos - 11.0.1
apple / mac_os_x 10.15 10.15.7
apple / mac_os_x 10.14 10.14.6
apple / mac_os_x 10.14.6-security_update_2020-001 10.14.6-security_update_2020-001.x
apple / mac_os_x 10.14.6-security_update_2020-002 10.14.6-security_update_2020-002.x
apple / mac_os_x 10.14.6-security_update_2020-003 10.14.6-security_update_2020-003.x
apple / mac_os_x 10.14.6-security_update_2020-004 10.14.6-security_update_2020-004.x
apple / mac_os_x 10.14.6-security_update_2020-005 10.14.6-security_update_2020-005.x
apple / mac_os_x 10.14.6-security_update_2020-006 10.14.6-security_update_2020-006.x
apple / mac_os_x 10.14.6-security_update_2019-007 10.14.6-security_update_2019-007.x
apple / mac_os_x 10.14.6-security_update_2019-004 10.14.6-security_update_2019-004.x
apple / mac_os_x 10.14.6-security_update_2019-005 10.14.6-security_update_2019-005.x
apple / mac_os_x 10.14.6-security_update_2019-006 10.14.6-security_update_2019-006.x
apple / mac_os_x 10.14.6 10.14.6.x
apple / mac_os_x 10.15.7 10.15.7.x
apple / mac_os_x 10.14.6-security_update_2019-001 10.14.6-security_update_2019-001.x
apple / mac_os_x 10.14.6-security_update_2019-002 10.14.6-security_update_2019-002.x
apple / mac_os_x 10.15.7-security_update_2020 10.15.7-security_update_2020.x