The host is installed with Apple Mac OS X 10.14.6 or 10.13.6 and Safari before 13 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation may lead to arbitrary code execution.
The host is installed with Apple Mac OS X 10.14.6 or 10.13.6 and Safari before 13 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation may lead to arbitrary code execution.
The host is installed with Safari before 13.0.5 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15 and is prone to an address bar spoofing vulnerability. A flaw is present in the application, which fails to properly handle an inconsistent user interface issue. Successful exploitation could lead to address bar spoofing via a malicious website.
The host is installed with Safari before 13.0.5 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle a user interface issue. Successful exploitation could allow attackers to trick local user into unknowingly sending a password unencrypted over the network.
Safari before 13.1.1 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.5, Mozilla Firefox 74, Mozilla Firefox ESR 68.6, Mozilla Thunderbird 68.6, Google Chrome 80.0.3987.149 and Microsoft Edge (Chromium based) 80.0.361.69: The inputs to sctp_load_addresses_from_init are verified by sctp_arethere_unrecognized_parameters however, the two functions handled parameter bounds differently, resul ...
The host is installed with Safari before 13.1 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.4 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could allow a malicious iframe to use another website's download settings.
The host is installed with Safari before 13.1 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.4 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could lead to a download's origin being incorrectly associated.
The host is installed with Safari before 13.1 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.4 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle a memory management issue. Successful exploitation could allow an attacker to execute code.
The host is installed with Google Chrome before 20.0.1132.43 or Apple Safari before 6.0 and is prone to information disclosure vulnerability. A flaw is present in the applications, which fail to handle an IFRAME element. Successful exploitation allows remote attackers to obtain potentially sensitive information from a fragment identifier.
The host is installed with Safari before 13.1.1 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation cause Safari to launch an application via a malicious process.