CVE-2019-8503
Description
A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the context of another website.
CWE
- (none)
Affected
- Apple / iOS — v=unspecified <iOS 12.2 [affected]
- Apple / tvOS — v=unspecified <tvOS 12.2 [affected]
- Apple / Safari — v=unspecified <Safari 12.1 [affected]
- Apple / iTunes for Windows — v=unspecified <iTunes 12.9.4 for Windows [affected]
- Apple / iCloud for Windows — v=unspecified <iCloud for Windows 7.11 [affected]
CVSS
- (none)
References
- https://support.apple.com/HT209599 x_refsource_MISC
- https://support.apple.com/HT209601 x_refsource_MISC
- https://support.apple.com/HT209603 x_refsource_MISC
- https://support.apple.com/HT209604 x_refsource_MISC
- https://support.apple.com/HT209605 x_refsource_MISC
Source
cvelistV5-main/cves/2019/8xxx/CVE-2019-8503.json