CVE-2019-6204 — Cross-site Scripting in Apple Safari

Vendor	Product	Version range	Fixed in
apple	ios	—	—
apple	ios	>= unspecified < iOS 12.2	iOS 12.2
apple	iphone_os	< 12.2	12.2
apple	safari	< 12.1	12.1
apple	safari	—	—
apple	safari	>= unspecified < Safari 12.1	Safari 12.1

Apple

CVE-2019-6204: iOS 12.2

vendor_apple·2019-03-25·CVSS 6.1

CVE-2019-6204 [MEDIUM] CVE-2019-6204: iOS 12.2 Apple Security Update: About the security content of iOS 12.2 Product: iOS Version: 12.2 CVE: CVE-2019-6204 Component: Safari Reader Impact: Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting Description: A logic issue was addressed with improved validation.

Apple

CVE-2019-6204: Safari 12.1

vendor_apple·2019-03-25·CVSS 6.1

CVE-2019-6204 [MEDIUM] CVE-2019-6204: Safari 12.1 Apple Security Update: About the security content of Safari 12.1 Product: Safari Version: 12.1 CVE: CVE-2019-6204 Component: Safari Reader Impact: Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting Description: A logic issue was addressed with improved validation.

GHSA

GHSA-r5q9-989v-wqpc: A logic issue was addressed with improved validation

ghsa_unreviewed·2022-05-24

CVE-2019-6204 [MEDIUM] GHSA-r5q9-989v-wqpc: A logic issue was addressed with improved validation A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting.

CVE-2019-6204: A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted…

Affected