Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAppleCVELIST:CVE-2020-9857
HistoryOct 27, 2020 - 8:51 p.m.

CVE-2020-9857

2020-10-2720:51:59
apple
www.cve.org
5
url parsing
input validation
macos catalina
security update
safari
exfiltrate autofilled data

AI Score

4.8

Confidence

Low

EPSS

0.001

Percentile

32.5%

JSON

An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra. A malicious website may be able to exfiltrate autofilled data in Safari.

CNA Affected

[
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "10.15",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

cve 1
prion 1
nvd 1
openvas 1
nessus 1
apple 2
cve
cve
CVE-2020-9857
2020-10-27 21:15:15
prion
prion
Input validation
2020-10-27 21:15:00
nvd
nvd
CVE-2020-9857
2020-10-27 21:15:15
openvas
openvas
Apple Mac OS X Security Update (HT211170 - 03)
2020-05-27 00:00:00
nessus
nessus
macOS 10.15.x < 10.15.5 / 10.14.x < 10.14.6 Security Update 2020-003 / 10.13.x < 10.13.6 Security Update 2020-003
2020-05-28 00:00:00
apple
apple
About the security content of macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra - Apple Support
2020-09-21 04:32:17
About the security content of macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra
2020-05-26 00:00:00

AI Score

4.8

Confidence

Low

EPSS

0.001

Percentile

32.5%

JSON
Related for CVELIST:CVE-2020-9857
cve1prion1nvd1openvas1nessus1apple2