Vulnerabilities > CVE-2020-9942 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple Safari

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
apple
CWE-1021
NVD
Published: 2020-12-08
Updated: 2022-06-02

Summary

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, Safari 13.1.2. Visiting a malicious website may lead to address bar spoofing.

Vulnerable Configurations

Part Description Count
Application
Apple
176
OS
Apple
211

Common Weakness Enumeration (CWE)

References