PT-2020-11310 · Apple · Safari+5
Artur Janc
+3
·
Published
2020-10-27
·
Updated
2020-10-29
·
CVE-2019-8827
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Safari versions prior to 13.0.3
iTunes versions prior to 12.10.2 for Windows
iCloud for Windows versions prior to 10.9.2
tvOS versions prior to 13.2
iOS versions prior to 13.2
iPadOS versions prior to 13.2
iCloud for Windows versions prior to 7.15
Description
The HTTP referrer header may be used to leak browsing history when visiting a maliciously crafted website, potentially revealing the sites a user has visited.
Recommendations
For Safari versions prior to 13.0.3, update to Safari 13.0.3 or later.
For iTunes versions prior to 12.10.2 for Windows, update to iTunes 12.10.2 for Windows or later.
For iCloud for Windows versions prior to 10.9.2, update to iCloud for Windows 10.9.2 or later.
For tvOS versions prior to 13.2, update to tvOS 13.2 or later.
For iOS versions prior to 13.2, update to iOS 13.2 or later.
For iPadOS versions prior to 13.2, update to iPadOS 13.2 or later.
For iCloud for Windows versions prior to 7.15, update to iCloud for Windows 7.15 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Safari
Icloud For Windows
Ios
Ipados
Itunes
Tvos