Описание
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 13.1.2 (исключая)
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode.
EPSS
Процентиль: 21%
0.00068
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
NVD-CWE-noinfo