CVE-2020-29623

Advisory lineage Upstream: 0 Downstream: 15
Modified
Published: 02 Apr 2021, 17:44
Last modified:04 Aug 2024, 16:55

Vulnerability Summary

Overall Risk (default)
low
13/100
CVSS Score
3.3 LOW
v3.1 (nvd)
EPSS Score
0.03% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

02 Apr 2021, 17:44
Published
Vulnerability first disclosed
04 Aug 2024, 16:55
Last Modified
Vulnerability information updated

Description

"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. A user may be unable to fully delete browsing history.

CVSS Metrics

  • v3.1LOWScore: 3.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
  • v2.0LOWScore: 2.1AV:L/AC:L/Au:N/C:N/I:P/A:N

EPSS Trends

Current EPSS score: 0.03% Percentile: 9%

Affected Systems

  • appleios and ipados

    ≥ unspecified, < 14.3

  • appleipados

    < 14.3

  • appleiphone_os

    < 14.3

  • applemac_os_x

    ≥ 10.14, < 10.14.6 | ≥ 10.15, < 10.15.7 | 10.14.6 | 10.14.6:security_update_2019-001 | 10.14.6:security_update_2019-002 | 10.14.6:security_update_2020-001 | 10.14.6:security_update_2020-002 | 10.14.6:security_update_2020-003 | 10.14.6:security_update_2020-004 | 10.14.6:security_update_2020-005 | 10.14.6:security_update_2020-006 | 10.14.6:supplemental_update | 10.14.6:supplemental_update_2 | 10.15.7 | 10.15.7:supplemental_update

  • applemacos

    ≥ 11.0, < 11.1.0 | ≥ unspecified, < 11.1

  • appletvos

    < 14.3 | ≥ unspecified, < 14.3

  • fedoraprojectfedora

    32 | 33

  • UnknownWebKitGTK

    < 2.30.6

References (6)