CVE-2019-8649
Published: Dec 18, 2019
Modified: Aug 4, 2024
Description
A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting.
| Vendor | Product | Versions |
|---|---|---|
Apple | iOS | affected unspecified - < iOS 12.4 |
Apple | macOS | affected unspecified - < macOS Mojave 10.14.6 |
Apple | tvOS | affected unspecified - < tvOS 12.4 |
Apple | Safari | affected unspecified - < Safari 12.1.2 |
Apple | iTunes for Windows | affected unspecified - < iTunes for Windows 12.9.6 |
Apple | iCloud for Windows | affected unspecified - < iCloud for Windows 7.13 |
Apple | iCloud for Windows (Microsoft Store) | affected unspecified - < iCloud for Windows 10.6 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now