Adam Chester has been praise with institutionalize it to Apple . The novel update resolve a defect in thwart - site script ( XSS ) . TrustedSec ‘s researcher from the FH Münster University of Applied Sciences in Germany plant the fault . An arbitrary codification capital punishment defect which can be ill-use use malicious range of a function filing cabinet has already been patched by the tech goliath . This calendar week , Apple as well put out update to iOS 14 , watchOS 7 and tvOS 14 , but aver no exposure are handle . This blemish , cover by a Cisco Talos investigator to Apple , touch all macOS translation and was also patch up on Io and iPadOS early this calendar month with the intromission of variation 14 . The 4th glitch pay back in macOS this week , which alone touch on High Sierra , affect the Mail serving and will causal agency a outside trespasser to “ accidentally alter the diligence Department of State . ” This hebdomad , iCloud for Windows was kick upstairs to variant 11.4 . The ImageIO constituent in macOS High Sierra and Mojave is strike by this job , key out by Xingwei Lin of Ant Group Light - Year Security Lab . CVE-2020 - 9973 , a trouble come to the Model I / O constituent , is one of the security cakehole . Apple impression that tap the hemipterous insect , which involve process a malicious USD data file , could result to the performance of arbitrary codification or a Department of State province . CVE-2020 - 9968 , a sandpit bug that can be ill-use by a malicious curriculum to approach throttle lodge , is another blemish that impress all macOS edition and which Apple already rigid in iOS 14 and iPadOS 14 early this calendar month .