CVE-2020-9912
published 2020-10-16CVE-2020-9912: A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame…
low3.3CVSS 3.1
AVLACLPRLUINSUCNILAN
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | safari | < 13.1.2 | 13.1.2 |
| apple | safari | — | — |
| apple | safari | >= unspecified < Safari 13.1.2 | Safari 13.1.2 |
Apple
CVE-2020-9912: Safari 13.1.2
vendor_apple·2020-07-15·CVSS 3.3
CVE-2020-9912 [LOW] CVE-2020-9912: Safari 13.1.2
Apple Security Update: About the security content of Safari 13.1.2
Product: Safari
Version: 13.1.2
CVE: CVE-2020-9912
Component: Safari Downloads
Impact: A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode
Description: A logic issue was addressed with improved restrictions.
GHSA
GHSA-qcmx-2mgh-jp57: A logic issue was addressed with improved restrictions
ghsa_unreviewed·2022-05-24
CVE-2020-9912 [LOW] GHSA-qcmx-2mgh-jp57: A logic issue was addressed with improved restrictions
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2020-10-16
Published