CVE-2019-6228
published 2019-03-05CVE-2019-6228: A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue is fixed in iOS 12.1.3, Safari 12.0.3…
medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue is fixed in iOS 12.1.3, Safari 12.0.3. Processing maliciously crafted web content may lead to a cross site scripting attack.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | ios | >= unspecified < iOS 12.1.3 | iOS 12.1.3 |
| apple | iphone_os | < 12.1.3 | 12.1.3 |
| apple | safari | < 12.0.3 | 12.0.3 |
| apple | safari | — | — |
| apple | safari | >= unspecified < Safari 12.0.3 | Safari 12.0.3 |
Apple
CVE-2019-6228: Safari 12.0.3
vendor_apple·2019-01-22·CVSS 6.1
CVE-2019-6228 [MEDIUM] CVE-2019-6228: Safari 12.0.3
Apple Security Update: About the security content of Safari 12.0.3
Product: Safari
Version: 12.0.3
CVE: CVE-2019-6228
Component: Safari Reader
Impact: Processing maliciously crafted web content may lead to a cross site scripting attack
Description: A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation.
Apple
CVE-2019-6228: iOS 12.1.3
vendor_apple·2019-01-22·CVSS 6.1
CVE-2019-6228 [MEDIUM] CVE-2019-6228: iOS 12.1.3
Apple Security Update: About the security content of iOS 12.1.3
Product: iOS
Version: 12.1.3
CVE: CVE-2019-6228
Component: Safari Reader
Impact: Processing maliciously crafted web content may lead to a cross site scripting attack
Description: A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation.
GHSA
GHSA-px8f-q952-776q: A cross-site scripting issue existed in Safari
ghsa_unreviewed·2022-05-14
CVE-2019-6228 [MEDIUM] CWE-79 GHSA-px8f-q952-776q: A cross-site scripting issue existed in Safari
A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue is fixed in iOS 12.1.3, Safari 12.0.3. Processing maliciously crafted web content may lead to a cross site scripting attack.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-03-05
Published