CVE-2019-8771

2020-10-2719:47:19

apple

www.cve.org

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.1%

JSON

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 13.0.1, iOS 13. Maliciously crafted web content may violate iframe sandboxing policy.

CNA Affected

[
  {
    "product": "Safari",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "13.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "iOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "13",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]