Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-9843

Опубликовано: 09 июн. 2020
Источник: ubuntu
Приоритет: medium
CVSS2: 5.8
CVSS3: 7.1

Описание

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to a cross site scripting attack.

РелизСтатусПримечание
bionic

DNE

devel

DNE

eoan

ignored

end of life
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

jammy

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

ignored

eoan

ignored

end of life
esm-apps/bionic

ignored

esm-apps/focal

ignored

esm-apps/jammy

ignored

esm-apps/noble

ignored

esm-infra-legacy/trusty

DNE

esm-infra/xenial

ignored

focal

ignored

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

eoan

DNE

esm-apps/bionic

ignored

esm-apps/xenial

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

Показывать по

РелизСтатусПримечание
bionic

released

2.28.3-0ubuntu0.18.04.1
devel

not-affected

2.28.3-2
eoan

released

2.28.3-0ubuntu0.19.10.1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

2.28.3-0ubuntu0.18.04.1
esm-infra/focal

not-affected

2.28.3-0ubuntu0.20.04.1
esm-infra/xenial

ignored

focal

released

2.28.3-0ubuntu0.20.04.1
groovy

not-affected

2.28.3-2
hirsute

not-affected

2.28.3-2

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

eoan

DNE

esm-apps/bionic

ignored

esm-apps/xenial

ignored

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

Показывать по

Ссылки на источники

5.8 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-9843

CVSS3: 7.1
redhat
почти 5 лет назад

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to a cross site scripting attack.

nvd логотип

CVE-2020-9843

CVSS3: 7.1
nvd
около 5 лет назад

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to a cross site scripting attack.

debian логотип

CVE-2020-9843

CVSS3: 7.1
debian
около 5 лет назад

An input validation issue was addressed with improved input validation ...

github логотип

GHSA-9c59-pwqp-c9gc

CVSS3: 7.1
github
около 3 лет назад

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to a cross site scripting attack.

fstec логотип

BDU:2022-00560

CVSS3: 7.1
fstec
около 5 лет назад

Уязвимость модулей отображения веб-страниц WebKitGTK и WPE WebKit операционных систем Apple iPadOS, watchOS, iOS, tvOS, браузера Safari, мультимедийного проигрывателя iTunes и сервиса iCloud для операционных систем Windows, позволяющая нарушителю осуществлять межсайтовые сценарные атаки

5.8 Medium

CVSS2

7.1 High

CVSS3

Уязвимость CVE-2020-9843