PT-2020-20921 · Apple · Safari+1

Rafay Baloch

Published

2020-11-12

Updated

2020-12-09

CVE-2020-9987

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions Safari versions prior to 14.0

Description An inconsistent user interface issue was addressed with improved state management. Visiting a malicious website may lead to address bar spoofing.

Recommendations For versions prior to 14.0, update to Safari 14.0 to resolve the issue. As a temporary workaround, consider avoiding visits to untrusted or malicious websites until the update is applied.

Fix

Clickjacking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1021

Related Identifiers

CVE-2020-9987

Affected Products

Apple Macos

Safari

PT-2020-20921 · Apple · Safari+1

CVE-2020-9987

Weakness Enumeration

Related Identifiers

Affected Products

References · 9