CVE-2020-9860

Published: Oct 27, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 13.0.5. Processing a maliciously crafted URL may lead to arbitrary javascript code execution.

Vendor	Product	Versions
Apple	Safari	affected `unspecified - < 13.0`

References

https://support.apple.com/en-us/HT210922

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-9860

Description

Affected Products

References