PT-2019-19200 · Apple+6 · Watchos+7

Sergei Glazunov

Publicado

2019-11-04

Atualizado

2022-10-14

CVE-2019-8764

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions watchOS versions prior to 6.1

Description A logic issue was addressed with improved state management. Processing maliciously crafted web content may lead to universal cross site scripting.

Recommendations For versions prior to 6.1, update to watchOS 6.1 to resolve the issue.

Exploit

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

ALSA-2020:4451

ALT-PU-2020-1239

CESA-2020_4035

CESA-2020_4451

CVE-2019-8764

DSA-4558-1

MGASA-2019-0324

OPENSUSE-SU-2019:2587-1

OPENSUSE-SU-2019:2591-1

OPENSUSE-SU-2019_2587-1

OPENSUSE-SU-2019_2591-1

RHSA-2020:4035

RHSA-2020:4451

RHSA-2020_4035

RHSA-2020_4451

RLSA-2020:4451

SUSE-SU-2019:3044-1

SUSE-SU-2020:1135-1

Produtos afetados

Alt Linux

Almalinux

Centos

Red Hat

Rocky Linux

Suse

Itunes

Watchos

PT-2019-19200 · Apple+6 · Watchos+7

CVE-2019-8764

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 249