CVE-2019-8771

Опубликовано: 27 окт. 2020

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 13.0.1, iOS 13. Maliciously crafted web content may violate iframe sandboxing policy.

Ссылки

https://support.apple.com/en-us/HT210605
Vendor Advisory
https://support.apple.com/en-us/HT210606
Vendor Advisory
https://support.apple.com/en-us/HT210605
Vendor Advisory
https://support.apple.com/en-us/HT210606
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*

Версия до 13.0.1 (исключая)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 13.0. (исключая)

EPSS

Процентиль: 29%

0.00105

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-1021

Связанные уязвимости

CVE-2019-8771

CVSS3: 6.1

ubuntu

почти 5 лет назад

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 13.0.1, iOS 13. Maliciously crafted web content may violate iframe sandboxing policy.

CVE-2019-8771

CVSS3: 5.4

redhat

почти 6 лет назад

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 13.0.1, iOS 13. Maliciously crafted web content may violate iframe sandboxing policy.

CVE-2019-8771

CVSS3: 6.1

debian

почти 5 лет назад

This issue was addressed with improved iframe sandbox enforcement. Thi ...

GHSA-w6pm-jp6h-x3pq

github

около 3 лет назад

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 13.0.1, iOS 13. Maliciously crafted web content may violate iframe sandboxing policy.

SUSE-SU-2020:1135-1

suse-cvrf

больше 5 лет назад

Security update for webkit2gtk3

EPSS

Процентиль: 29%

0.00105

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-1021