Bijoora

Researcher fromThe City School, PAF Chapter
#17442of 53,630
15.3Total CVSS
Vulnerabilities · 3
Medium
3
PT-2020-20884
4.3
2020-11-12
Apple · Safari · CVE-2020-9942
**Name of the Vulnerable Software and Affected Versions** Safari versions prior to 13.1.2 macOS Big Sur versions prior to 11.0.1 **Description** An inconsistent user interface issue was addressed with improved state management. Visiting a malicious website may lead to address bar spoofing. **Recommendations** For Safari versions prior to 13.1.2, update to Safari 13.1.2 or later to resolve the issue. For macOS Big Sur versions prior to 11.0.1, update to macOS Big Sur 11.0.1 or later to resolve the issue.
PT-2020-8919
5.5
2020-10-27
Apple · Security Update 2017-001 Sierra · CVE-2018-4390
**Name of the Vulnerable Software and Affected Versions** macOS High Sierra versions prior to 10.13.1 Security Update 2017-001 Sierra versions prior to the update Security Update 2017-004 El Capitan versions prior to the update watchOS versions prior to 4.3 iOS versions prior to 12.1 **Description** The issue is related to an inconsistent user interface that could be exploited by processing a maliciously crafted text message, potentially leading to UI spoofing. **Recommendations** For macOS High Sierra, update to version 10.13.1 or later. For Security Update 2017-001 Sierra, apply the security update. For Security Update 2017-004 El Capitan, apply the security update. For watchOS, update to version 4.3 or later. For iOS, update to version 12.1 or later.
PT-2020-8920
5.5
2020-10-27
Apple · Security Update 2017-001 Sierra · CVE-2018-4391
**Name of the Vulnerable Software and Affected Versions** macOS High Sierra versions prior to 10.13.1 Security Update 2017-001 Sierra versions prior to the update Security Update 2017-004 El Capitan versions prior to the update watchOS versions prior to 4.3 iOS versions prior to 12.1 **Description** The issue is related to an inconsistent user interface that could be exploited by processing a maliciously crafted text message, potentially leading to UI spoofing. This is a result of inadequate state management. **Recommendations** For macOS High Sierra, update to version 10.13.1 or later. For Security Update 2017-001 Sierra, apply the security update. For Security Update 2017-004 El Capitan, apply the security update. For watchOS, update to version 4.3 or later. For iOS, update to version 12.1 or later.