Vulnerabilities > Apple > Safari > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-10-27 CVE-2019-8898 Unspecified vulnerability in Apple products
An information disclosure issue existed in the handling of the Storage Access API.
network
low complexity
apple
4.3
2020-10-27 CVE-2019-8827 Unspecified vulnerability in Apple products
The HTTP referrer header may be used to leak browsing history.
network
low complexity
apple
4.3
2020-10-27 CVE-2019-8771 Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple Safari
This issue was addressed with improved iframe sandbox enforcement.
network
low complexity
apple CWE-1021
6.1
2020-10-27 CVE-2019-8762 Cross-site Scripting vulnerability in Apple products
A validation issue was addressed with improved logic.
network
low complexity
apple CWE-79
6.1
2020-10-27 CVE-2019-8570 Unspecified vulnerability in Apple products
A logic issue was addressed with improved state management.
network
low complexity
apple
6.5
2020-10-27 CVE-2018-4444 Unspecified vulnerability in Apple products
A logic issue was addressed with improved state management.
network
low complexity
apple
6.5
2020-10-16 CVE-2020-9925 Cross-site Scripting vulnerability in Apple products
A logic issue was addressed with improved state management.
network
low complexity
apple CWE-79
6.1
2020-10-16 CVE-2020-9916 Unspecified vulnerability in Apple products
A URL Unicode encoding issue was addressed with improved state management.
network
low complexity
apple
5.3
2020-10-16 CVE-2020-9915 Unspecified vulnerability in Apple products
An access issue existed in Content Security Policy.
network
low complexity
apple
6.5
2020-10-16 CVE-2020-9894 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
network
low complexity
apple CWE-125
4.3