CVE-2020-27894

The issue was addressed with additional user controls. This issue is fixed in macOS Big Sur 11.0.1. Users may be unable to remove metadata indicating where files were downloaded from.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
appleCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
VendorProductVersion
applemacos
11.0 ≤
𝑥
< 11.0.1
𝑥
= Vulnerable software versions
References
http://seclists.org/fulldisclosure/2020/Dec/32
https://support.apple.com/en-us/HT211931
http://seclists.org/fulldisclosure/2020/Dec/32
https://support.apple.com/en-us/HT211931