Back to search
CVE-2020-9862
Published: Oct 16, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web Inspector may lead to command injection.
| Vendor | Product | Versions |
|---|---|---|
Apple | iOS | affected unspecified - < iOS 13.6 and iPadOS 13.6 |
Apple | tvOS | affected unspecified - < tvOS 13.4.8 |
Apple | watchOS | affected unspecified - < watchOS 6.2.8 |
Apple | Safari | affected unspecified - < Safari 13.1.2 |
Apple | iTunes for Windows | affected unspecified - < iTunes 12.10.8 for Windows |
Apple | iCloud for Windows | affected unspecified - < iCloud for Windows 11.3 |
Apple | iCloud for Windows (Legacy) | affected unspecified - < iCloud for Windows 7.20 |
References
https://support.apple.com/HT211288
x_refsource_MISC
https://support.apple.com/HT211290
x_refsource_MISC
https://support.apple.com/HT211291
x_refsource_MISC
https://support.apple.com/HT211292
x_refsource_MISC
https://support.apple.com/HT211293
x_refsource_MISC
https://support.apple.com/HT211294
x_refsource_MISC
https://support.apple.com/HT211295
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now