Lucene search
K

15 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:15 a.m.3 views

SUSE CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.5CVSS5.6AI score0.04541EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2020/09/07 6:48 p.m.33 views

CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS2.6AI score0.04541EPSS
Exploits1References4
NVD
NVD
added 2019/12/18 6:15 p.m.19 views

CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS6.2AI score0.04541EPSS
Exploits1References7
OSV
OSV
added 2019/12/18 6:15 p.m.3 views

DEBIAN-CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS5.8AI score0.04541EPSS
Exploits1References1
OSV
OSV
added 2019/12/18 6:15 p.m.10 views

CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS6AI score
Exploits0References7
Debian CVE
Debian CVE
added 2019/12/18 5:33 p.m.25 views

CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS6.2AI score0.04541EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2019/12/18 5:33 p.m.40 views

CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS6.3AI score0.04541EPSS
Exploits1
CVE
CVE
added 2019/12/18 5:33 p.m.228 views

CVE-2019-8649

CVE-2019-8649 concerns a logic issue in how synchronous page loads are handled within WebKit components. The flaw could enable universal cross-site scripting when processing malicious web content. Reports indicate the fix was implemented via improved state management and is addressed in Apple upd...

6.1CVSS6AI score0.04541EPSS
Exploits1References7Affected Software6
RedHat Linux
RedHat Linux
added 2019/12/17 1:2 p.m.7 views

webkitgtk: Incorrect state management leading to universal cross-site scripting

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS6.1AI score0.04541EPSS
Exploits1References5
exploitpack
exploitpack
added 2019/10/01 12:0 a.m.27 views

WebKit - UXSS Using JavaScript: URI and Synchronous Page Loads

WebKit - UXSS Using JavaScript: URI and Synchronous Page Loads VULNERABILITY DETAILS void DocumentWriter::replaceDocumentconst String& source, Document ownerDocument ... beginmframe-document-url, true, ownerDocument; // 1 // begin might fire an unload event, which will result in a situation where...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/10/01 12:0 a.m.242 views

WebKit - UXSS Using JavaScript: URI and Synchronous Page Loads

VULNERABILITY DETAILS void DocumentWriter::replaceDocumentconst String& source, Document ownerDocument ... beginmframe-document-url, true, ownerDocument; // 1 // begin might fire an unload event, which will result in a situation where no new document has been attached, // and the old document has...

7.4AI score
Exploits0
Apple
Apple
added 2019/09/17 6:8 a.m.41 views

About the security content of iCloud for Windows 10.6 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS0.2AI score0.12852EPSS
Exploits7Affected Software1
UbuntuCve
UbuntuCve
added 2019/09/04 12:0 a.m.23 views

CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS5.8AI score0.04541EPSS
Exploits1References2
OSV
OSV
added 2019/09/04 12:0 a.m.6 views

UBUNTU-CVE-2019-8649

A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing...

6.1CVSS6AI score0.04541EPSS
Exploits1References3
Exploit DB
Exploit DB
added 2019/07/25 12:0 a.m.300 views

WebKit - Universal Cross-Site Scripting due to Synchronous Page Loads

BACKGROUND As lokihardt@ has demonstrated in https://bugs.chromium.org/p/project-zero/issues/detail?id=1121, WebKit's support of the obsolete showModalDialog method gives an attacker the ability to perform synchronous cross-origin page loads. In certain conditions, this might lead to...

7.4AI score
Exploits0
Rows per page
Query Builder