CVE-2020-9805

Name of the Vulnerable Software and Affected Versions Safari versions prior to 13.1.1 iOS versions prior to 13.5 iPadOS versions prior to 13.5 tvOS versions prior to 13.4.5 watchOS versions prior to 6.2.5 iTunes versions prior to 12.10.7 for Windows iCloud for Windows versions prior to 11.2 and 7.19

Description The issue is related to a logic problem in the WebKit module, which can be exploited by a remote attacker using malicious web content to conduct cross-site scripting attacks. This can lead to universal cross-site scripting.

Recommendations For Safari versions prior to 13.1.1, update to version 13.1.1 or later. For iOS versions prior to 13.5, update to version 13.5 or later. For iPadOS versions prior to 13.5, update to version 13.5 or later. For tvOS versions prior to 13.4.5, update to version 13.4.5 or later. For watchOS versions prior to 6.2.5, update to version 6.2.5 or later. For iTunes versions prior to 12.10.7 for Windows, update to version 12.10.7 or later. For iCloud for Windows versions prior to 11.2 and 7.19, update to version 11.2 or 7.19 or later.