CVE-2020-3864
N/A
N/A
Summary
A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and iPadOS 13.3.1. A DOM object context may not have had a unique security origin.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Apple | iOS and iPadOS | unspecified < 13.3 | affected |
| Apple | tvOS | unspecified < 13.3 | affected |
| Apple | Safari | unspecified < 13.0 | affected |
| Apple | iTunes for Windows | unspecified < 12.10 | affected |
| Apple | iCloud for Windows | unspecified < 10.9 | affected |
| Apple | iCloud for Windows | unspecified < 7.17 | affected |
Weaknesses
- A DOM object context may not have had a unique security origin
ADP Enrichment
CVE Program Container
Additional References
- https://support.apple.com/en-us/HT210947
- https://support.apple.com/en-us/HT210918
- https://support.apple.com/en-us/HT210920
- https://support.apple.com/en-us/HT210922
- https://support.apple.com/en-us/HT210923
- https://support.apple.com/en-us/HT210948
References
- https://support.apple.com/en-us/HT210947
- https://support.apple.com/en-us/HT210918
- https://support.apple.com/en-us/HT210920
- https://support.apple.com/en-us/HT210922
- https://support.apple.com/en-us/HT210923
- https://support.apple.com/en-us/HT210948
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.