Back to search
CVE-2020-9925
Published: Oct 16, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
A logic issue was addressed with improved state management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Processing maliciously crafted web content may lead to universal cross site scripting.
| Vendor | Product | Versions |
|---|---|---|
Apple | iOS | affected unspecified - < iOS 13.6 and iPadOS 13.6 |
Apple | tvOS | affected unspecified - < tvOS 13.4.8 |
Apple | watchOS | affected unspecified - < watchOS 6.2.8 |
Apple | Safari | affected unspecified - < Safari 13.1.2 |
Apple | iTunes for Windows | affected unspecified - < iTunes 12.10.8 for Windows |
Apple | iCloud for Windows | affected unspecified - < iCloud for Windows 11.3 |
Apple | iCloud for Windows (Legacy) | affected unspecified - < iCloud for Windows 7.20 |
References
https://support.apple.com/HT211288
x_refsource_MISC
https://support.apple.com/HT211290
x_refsource_MISC
https://support.apple.com/HT211291
x_refsource_MISC
https://support.apple.com/HT211292
x_refsource_MISC
https://support.apple.com/HT211293
x_refsource_MISC
https://support.apple.com/HT211294
x_refsource_MISC
https://support.apple.com/HT211295
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now