Apple Updates
3302Warning Date
Severity Level
Warning Number
Target Sector
29 January, 2020
● High
2020-857
All
Description:
Apple has released security updates to address vulnerabilities in the following products:
- iTunes 12.10.4 for Windows
- Available for Windows 7 and later
- tvOS 13.3.1
- Available for Apple TV 4K and Apple TV HD.
- Safari 13.0.5
- Available for macOS Mojave، macOS High Sierra، macOS Catalina
- iOS 12.4.5
- Available for iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch 6th generation
- iOS 13.3.1 and iPadOS 13.3.1
- Available for iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation
- iCloud for Windows 7.17
- Available for Windows 7 and later
- watchOS 6.1.2
- Available for Apple Watch Series 1 and later
- macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra
- Available for macOS High Sierra 10.13.6, macOS Mojave 10.14.6, and macOS Catalina 10.15.2
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Executye arbitrary code
- Able to read restricted memory
- Gain access to protected parts of the file system
Best practice and Recommendations:
The CERT team encourages users to review Apple security advisory and apply the necessary updates:
- https://support.apple.com/en-us/HT201222
- https://support.apple.com/en-us/HT210923
- https://support.apple.com/en-us/HT210920
- https://support.apple.com/en-us/HT210922
- https://support.apple.com/en-us/HT210918
Update Instructions: