Vulnerability Description
A validation issue was addressed with improved logic. This issue is fixed in Safari 13.0.1, iOS 13.1 and iPadOS 13.1, iCloud for Windows 10.7, tvOS 13, iCloud for Windows 7.14, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to universal cross site scripting.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Icloud | < 7.14 |
| Apple | Itunes | < 12.10.1 |
| Apple | Safari | < 13.0.1 |
| Apple | Ipad Os | < 13.1 |
| Apple | Iphone Os | < 13.1 |
| Apple | Tvos | < 13 |
Related Weaknesses (CWE)
References
- https://support.apple.com/en-us/HT210603Vendor Advisory
- https://support.apple.com/en-us/HT210604Vendor Advisory
- https://support.apple.com/en-us/HT210605Vendor Advisory
- https://support.apple.com/en-us/HT210635Vendor Advisory
- https://support.apple.com/en-us/HT210636Vendor Advisory
- https://support.apple.com/en-us/HT210637Vendor Advisory
- https://support.apple.com/en-us/HT210603Vendor Advisory
- https://support.apple.com/en-us/HT210604Vendor Advisory
- https://support.apple.com/en-us/HT210605Vendor Advisory
- https://support.apple.com/en-us/HT210635Vendor Advisory
- https://support.apple.com/en-us/HT210636Vendor Advisory
- https://support.apple.com/en-us/HT210637Vendor Advisory
FAQ
What is CVE-2019-8762?
CVE-2019-8762 is a vulnerability with a CVSS score of 6.1 (MEDIUM). A validation issue was addressed with improved logic. This issue is fixed in Safari 13.0.1, iOS 13.1 and iPadOS 13.1, iCloud for Windows 10.7, tvOS 13, iCloud for Windows 7.14, iTunes 12.10.1 for Wind...
How severe is CVE-2019-8762?
CVE-2019-8762 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-8762?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Icloud, Apple Itunes, Apple Safari, Apple Ipad Os, Apple Iphone Os.