CVE-2020-9903

Summary

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, Safari 13.1.2. A malicious attacker may cause Safari to suggest a password for the wrong domain.

Affected Software

VendorProductVersion RangeStatus
AppleiOSunspecified < iOS 13.6 and iPadOS 13.6affected
AppleSafariunspecified < Safari 13.1.2affected

Weaknesses

  • A malicious attacker may cause Safari to suggest a password for the wrong domain

ADP Enrichment

CVE Program Container

Additional References

References