CVE-2020-9860
published 2020-10-27CVE-2020-9860: A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 13.0.5. Processing a maliciously crafted URL may…
medium5.4CVSS 3.1
AVNACLPRNUIRSUCLILAN
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 13.0.5. Processing a maliciously crafted URL may lead to arbitrary javascript code execution.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | safari | < 13.0.5 | 13.0.5 |
| apple | safari | >= unspecified < 13.0 | 13.0 |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2020-10-27
Published