cve/2020/CVE-2020-3848.md

### [CVE-2020-3848](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3848)
![](https://img.shields.io/static/v1?label=Product&message=macOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%20macOS%20Catalina%2010.15.3%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=A%20remote%20attacker%20may%20be%20able%20to%20cause%20unexpected%20application%20termination%20or%20arbitrary%20code%20execution&color=brighgreen)

### Description

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/Charmve/BLE-Security-Attack-Defence
- https://github.com/hac425xxx/heap-exploitation-in-real-world
- https://github.com/houjingyi233/macOS-iOS-system-security