Multiple Vulnerabilities in Apple Safari
Severity Rating: High
Software Affected
Apple Safari version prior to 13.1.2.
Overview
Multiple vulnerabilities have been reported in Apple Safari which could be
exploited by a remote attacker to execute arbitrary code, perform cross
site scripting attacks or cause URL Unicode encoding on a targeted system.
Description
These vulnerabilities exist in Apple Safari due to various issues such as
improper input validation, improper access restrictions, improper state
management and improper memory handling. A remote attacker could exploit
these vulnerabilities by persuading a user to visit a specially crafted
website.
Successful exploitation of these vulnerabilities could allow the attacker
execute arbitrary code, perform cross site scripting attacks or cause URL
Unicode encoding on a targeted system.
Solution
Apply appropriate software updates as mentioned in the Apple Security
Updates.
Vendor Information
Apple
References
Apple
CVE Name
CVE-2019-9912
CVE-2019-9903
CVE-2019-9911
CVE-2019-9894
CVE-2019-9915
CVE-2019-9925
CVE-2019-9893
CVE-2019-9895
CVE-2019-9910
CVE-2019-9916
CVE-2019-9862
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.