CVE-2019-8762

Summary

A validation issue was addressed with improved logic. This issue is fixed in Safari 13.0.1, iOS 13.1 and iPadOS 13.1, iCloud for Windows 10.7, tvOS 13, iCloud for Windows 7.14, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to universal cross site scripting.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 13.1affected
AppletvOSunspecified < 13affected
AppleSafariunspecified < 13.0affected
AppleiTunes for Windowsunspecified < 12.10affected
AppleiCloud for Windowsunspecified < 10.7affected
AppleiCloud for Windowsunspecified < 7.14affected

Weaknesses

  • Processing maliciously crafted web content may lead to universal cross site scripting

ADP Enrichment

CVE Program Container

Additional References

References