CVE-2020-7463 in FreeBSD and Apple Products
Published on March 26, 2021

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The use-after-free situation may result in unintended kernel behaviour including a kernel panic.

NVD

Products Associated with CVE-2020-7463

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-7463 are published in these products:

FreeBSD

Apple iCloud

Apple iTunes

Apple Safari

Apple iPadOS

Apple iOS

Apple macOS

Apple tvOS

Apple watchOS

Apple iPadOS

Exploit Probability

EPSS

0.05%

Percentile

15.23%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-7463 in FreeBSD and Apple ProductsPublished on March 26, 2021

Products Associated with CVE-2020-7463

Exploit Probability

CVE-2020-7463 in FreeBSD and Apple Products
Published on March 26, 2021