CVE-2020-27894

EUVD-2020-20387
The issue was addressed with additional user controls. This issue is fixed in macOS Big Sur 11.0.1. Users may be unable to remove metadata indicating where files were downloaded from.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
Affected Products (NVD)
VendorProductVersion
applemacos
11.0 ≤
𝑥
< 11.0.1
𝑥
= Vulnerable software versions
References
http://seclists.org/fulldisclosure/2020/Dec/32
https://support.apple.com/en-us/HT211931
http://seclists.org/fulldisclosure/2020/Dec/32
https://support.apple.com/en-us/HT211931