June 27, 2022 · Applied Cybernetics Group
CVE-2020-9907 — Apple Multiple Products
Apple Multiple Products Memory Corruption Vulnerability
- Added to KEV
2022-06-27- Federal due date
2022-07-18- Vendor
- Apple
- Product
- Multiple Products
- EPSS
- 66.9th percentile (score 0.005, as of
2026-06-08) - NVD CVSS v3.1
- —
- Ransomware use
- Unknown
- Upstream
- https://nvd.nist.gov/vuln/detail/CVE-2020-9907
CISA short description
Apple iOS, iPadOS, and tvOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges.
Required action
Apply updates per vendor instructions.