Lucene search
AppleCVELIST:CVE-2020-9952HistoryOct 16, 2020 - 4:53 p.m.
CVE-2020-9952
2020-10-1616:53:49
apple
www.cve.org
An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0, watchOS 7.0, Safari 14.0, iCloud for Windows 11.4, iCloud for Windows 7.21. Processing maliciously crafted web content may lead to a cross site scripting attack.
CNA Affected
[
{
"product": "iOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "iOS 14.0 and iPadOS 14.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "tvOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "tvOS 14.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "watchOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "watchOS 7.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Safari",
"vendor": "Apple",
"versions": [
{
"lessThan": "Safari 14.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "iCloud for Windows",
"vendor": "Apple",
"versions": [
{
"lessThan": "iCloud for Windows 11.4",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "iCloud for Windows (Legacy)",
"vendor": "Apple",
"versions": [
{
"lessThan": "iCloud for Windows 7.21",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]References
seclists.org/fulldisclosure/2020/Nov/18
seclists.org/fulldisclosure/2020/Nov/19
seclists.org/fulldisclosure/2020/Nov/20
seclists.org/fulldisclosure/2020/Nov/22
www.openwall.com/lists/oss-security/2020/11/23/3
security.gentoo.org/glsa/202012-10
support.apple.com/HT211843
support.apple.com/HT211844
support.apple.com/HT211845
support.apple.com/HT211846
support.apple.com/HT211847
support.apple.com/HT211850
Related
alpinelinux
alpinelinux
CVE-2020-9952
2020-10-16 17:15:17
ubuntucve
ubuntucve
CVE-2020-9952
2020-11-24 00:00:00
cve
cve
CVE-2020-9952
2020-10-16 17:15:17
prion
prion
Cross site scripting
2020-10-16 17:15:00
veracode
veracode
Cross-site Scripting (XSS)
2021-04-29 12:14:55
nvd
nvd
CVE-2020-9952
2020-10-16 17:15:17
debiancve
debiancve
CVE-2020-9952
2020-10-16 17:15:17
redhatcve
redhatcve
CVE-2020-9952
2020-11-24 18:52:17
apple
apple
About the security content of iCloud for Windows 11.4 - Apple Support
2020-12-15 05:28:42
About the security content of iCloud for Windows 11.4
2020-09-24 00:00:00
About the security content of iCloud for Windows 7.21 - Apple Support
2020-11-12 10:19:34
kaspersky
kaspersky
KLA11965 Multiple vulnerabilities in Apple iCloud
2020-09-24 00:00:00
KLA12006 Multiple vulnerabilities in Apple iCloud
2020-11-12 00:00:00
openvas
openvas
Apple Safari Security Update (APPLE-SA-2020-09-16-3)
2020-09-22 00:00:00
Apple iCloud Security Update (HT211847)
2022-09-28 00:00:00
Ubuntu: Security Advisory (USN-4648-1)
2020-11-27 00:00:00
ubuntu
ubuntu
WebKitGTK vulnerabilities
2020-11-26 00:00:00
osv
osv
webkit2gtk vulnerabilities
2020-11-26 13:07:57
webkit2gtk - security update
2020-08-03 00:00:00
Moderate: GNOME security, bug fix, and enhancement update
2020-11-03 12:05:56
nessus
nessus
GLSA-202012-10 : WebkitGTK+: Multiple vulnerabilities
2020-12-24 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-4648-1)
2020-11-26 00:00:00
openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2022:0182-1)
2022-01-26 00:00:00
gentoo
gentoo
WebkitGTK+: Multiple vulnerabilities
2020-12-23 00:00:00
threatpost
threatpost
Apple Bug Allows Code Execution on iPhone, iPad, iPod
2020-09-17 20:23:17
suse
suse
Security update for webkit2gtk3 (important)
2022-02-17 00:00:00
Security update for webkit2gtk3 (important)
2022-01-25 00:00:00
redhat
redhat
(RHSA-2020:4451) Moderate: GNOME security, bug fix, and enhancement update
2020-11-03 12:05:56
(RHSA-2022:5924) Important: Service Telemetry Framework 1.4 security update
2022-08-08 16:13:09
rocky
rocky
GNOME security, bug fix, and enhancement update
2020-11-03 12:05:56