Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2020-29622

A race condition was addressed with additional validation. This issue is fixed in Security Update 2021-005 Catalina. Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges.

  • Published: Oct 19, 2021
  • Updated: Apr 14, 2023
  • CVE: CVE-2020-29622
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 7.6
  • AV:N/AC:H/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
apple / mac_os_x 10.15.7-supplemental_update 10.15.7-supplemental_update.x
apple / mac_os_x 10.15.7-security_update_2020-005 10.15.7-security_update_2020-005.x
apple / mac_os_x 10.15.7-security_update_2020-007 10.15.7-security_update_2020-007.x
apple / mac_os_x 10.15.7 10.15.7.x
apple / mac_os_x 10.15.7-security_update_2020-001 10.15.7-security_update_2020-001.x
apple / mac_os_x 10.15.7-security_update_2020 10.15.7-security_update_2020.x
apple / mac_os_x 10.15.7-security_update_2021-001 10.15.7-security_update_2021-001.x
apple / mac_os_x 10.15.7-security_update_2021-002 10.15.7-security_update_2021-002.x
apple / mac_os_x 10.15.7-security_update_2021-003 10.15.7-security_update_2021-003.x
apple / mac_os_x 10.15 10.15.6.x