Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2020-9952
PUBLISHED
More InfoOfficial Page
Assigner-apple
Assigner Org ID-286789f9-fbc2-4510-9f9a-43facdede74c
View Known Exploited Vulnerability (KEV) details
Published At-16 Oct, 2020 | 16:53
Updated At-04 Aug, 2024 | 10:50
Rejected At-
▼CVE Numbering Authority (CNA)

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0, watchOS 7.0, Safari 14.0, iCloud for Windows 11.4, iCloud for Windows 7.21. Processing maliciously crafted web content may lead to a cross site scripting attack.

Affected Products
Vendor
Apple Inc.Apple
Product
iOS
Versions
Affected
  • From unspecified before iOS 14.0 and iPadOS 14.0 (custom)
Vendor
Apple Inc.Apple
Product
tvOS
Versions
Affected
  • From unspecified before tvOS 14.0 (custom)
Vendor
Apple Inc.Apple
Product
watchOS
Versions
Affected
  • From unspecified before watchOS 7.0 (custom)
Vendor
Apple Inc.Apple
Product
Safari
Versions
Affected
  • From unspecified before Safari 14.0 (custom)
Vendor
Apple Inc.Apple
Product
iCloud for Windows
Versions
Affected
  • From unspecified before iCloud for Windows 11.4 (custom)
Vendor
Apple Inc.Apple
Product
iCloud for Windows (Legacy)
Versions
Affected
  • From unspecified before iCloud for Windows 7.21 (custom)
Problem Types
TypeCWE IDDescription
textN/AProcessing maliciously crafted web content may lead to a cross site scripting attack
Type: text
CWE ID: N/A
Description: Processing maliciously crafted web content may lead to a cross site scripting attack
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://support.apple.com/HT211850
x_refsource_MISC
https://support.apple.com/HT211844
x_refsource_MISC
https://support.apple.com/HT211845
x_refsource_MISC
https://support.apple.com/HT211843
x_refsource_MISC
https://support.apple.com/HT211846
x_refsource_MISC
https://support.apple.com/HT211847
x_refsource_MISC
http://seclists.org/fulldisclosure/2020/Nov/18
mailing-list
x_refsource_FULLDISC
http://seclists.org/fulldisclosure/2020/Nov/19
mailing-list
x_refsource_FULLDISC
http://seclists.org/fulldisclosure/2020/Nov/20
mailing-list
x_refsource_FULLDISC
http://seclists.org/fulldisclosure/2020/Nov/22
mailing-list
x_refsource_FULLDISC
http://www.openwall.com/lists/oss-security/2020/11/23/3
mailing-list
x_refsource_MLIST
https://security.gentoo.org/glsa/202012-10
vendor-advisory
x_refsource_GENTOO
Hyperlink: https://support.apple.com/HT211850
Resource:
x_refsource_MISC
Hyperlink: https://support.apple.com/HT211844
Resource:
x_refsource_MISC
Hyperlink: https://support.apple.com/HT211845
Resource:
x_refsource_MISC
Hyperlink: https://support.apple.com/HT211843
Resource:
x_refsource_MISC
Hyperlink: https://support.apple.com/HT211846
Resource:
x_refsource_MISC
Hyperlink: https://support.apple.com/HT211847
Resource:
x_refsource_MISC
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/18
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/19
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/20
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/22
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: http://www.openwall.com/lists/oss-security/2020/11/23/3
Resource:
mailing-list
x_refsource_MLIST
Hyperlink: https://security.gentoo.org/glsa/202012-10
Resource:
vendor-advisory
x_refsource_GENTOO
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://support.apple.com/HT211850
x_refsource_MISC
x_transferred
https://support.apple.com/HT211844
x_refsource_MISC
x_transferred
https://support.apple.com/HT211845
x_refsource_MISC
x_transferred
https://support.apple.com/HT211843
x_refsource_MISC
x_transferred
https://support.apple.com/HT211846
x_refsource_MISC
x_transferred
https://support.apple.com/HT211847
x_refsource_MISC
x_transferred
http://seclists.org/fulldisclosure/2020/Nov/18
mailing-list
x_refsource_FULLDISC
x_transferred
http://seclists.org/fulldisclosure/2020/Nov/19
mailing-list
x_refsource_FULLDISC
x_transferred
http://seclists.org/fulldisclosure/2020/Nov/20
mailing-list
x_refsource_FULLDISC
x_transferred
http://seclists.org/fulldisclosure/2020/Nov/22
mailing-list
x_refsource_FULLDISC
x_transferred
http://www.openwall.com/lists/oss-security/2020/11/23/3
mailing-list
x_refsource_MLIST
x_transferred
https://security.gentoo.org/glsa/202012-10
vendor-advisory
x_refsource_GENTOO
x_transferred
Hyperlink: https://support.apple.com/HT211850
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://support.apple.com/HT211844
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://support.apple.com/HT211845
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://support.apple.com/HT211843
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://support.apple.com/HT211846
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://support.apple.com/HT211847
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/18
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/19
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/20
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2020/Nov/22
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: http://www.openwall.com/lists/oss-security/2020/11/23/3
Resource:
mailing-list
x_refsource_MLIST
x_transferred
Hyperlink: https://security.gentoo.org/glsa/202012-10
Resource:
vendor-advisory
x_refsource_GENTOO
x_transferred
Details not found