The host is installed with Apple Safari before 12.0.2 and is prone to an address bar spoofing vulnerability. A flaw is present in the application, which fails to properly handle a logic issue in state management. Successful exploitation allows attackers to cause address bar spoofing.