4 matches found
CVE-2020-9911
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.6 and iPadOS 13.6, Safari 13.1.2. An issue in Safari Reader mode may allow a remote attacker to bypass the Same Origin Policy...
Code injection
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode...
CVE-2020-9911
CVE-2020-9911 is a logic issue in Safari Reader mode that could allow a remote attacker to bypass the Same Origin Policy. Apple fixes indicate the issue is addressed in iOS 13.6, iPadOS 13.6, and Safari 13.1.2. The initial description confirms a Same Origin bypass risk in Safari Reader; connected...
PT-2020-20858 · Apple · Ios +2
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 13.6 iPadOS versions prior to 13.6 Safari versions prior to 13.1.2 Description: A logic issue was addressed with improved restrictions. The issue may allow a remote attacker to bypass the Same Origin Policy in Safari...