Vulnerabilities > CVE-2020-9945 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple mac OS X

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
apple
CWE-1021
NVD
Published: 2020-12-08
Updated: 2022-06-02

Summary

A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, Safari 14.0.1. Visiting a malicious website may lead to address bar spoofing.

Vulnerable Configurations

Part Description Count
OS
Apple
211
Application
Apple
178

Common Weakness Enumeration (CWE)

References