Back to search
CVE-2019-8515
Published: Dec 18, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
A cross-origin issue existed with the fetch API. This was addressed with improved input validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may disclose sensitive user information.
| Vendor | Product | Versions |
|---|---|---|
Apple | iOS | affected unspecified - < iOS 12.2 |
Apple | tvOS | affected unspecified - < tvOS 12.2 |
Apple | Safari | affected unspecified - < Safari 12.1 |
Apple | iTunes for Windows | affected unspecified - < iTunes 12.9.4 for Windows |
Apple | iCloud for Windows | affected unspecified - < iCloud for Windows 7.11 |
References
https://support.apple.com/HT209599
x_refsource_MISC
https://support.apple.com/HT209601
x_refsource_MISC
https://support.apple.com/HT209603
x_refsource_MISC
https://support.apple.com/HT209604
x_refsource_MISC
https://support.apple.com/HT209605
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now