Fwd: [CIAD-2020-0047] Multiple Vulnerabilities in Apple Safari

Multiple Vulnerabilities in Apple Safari 

Severity Rating: High

Software Affected

Apple Safari version prior to 13.1.2.

Overview

Multiple vulnerabilities have been reported in Apple Safari which could be

exploited by a remote attacker to execute arbitrary code, perform cross

site scripting attacks or cause URL Unicode encoding on a targeted system.

Description

These vulnerabilities exist in Apple Safari due to various issues such as

improper input validation, improper access restrictions, improper state

management and improper memory handling. A remote attacker could exploit

these vulnerabilities by persuading a user to visit a specially crafted

website. 

Successful exploitation of these vulnerabilities could allow the attacker

execute arbitrary code, perform cross site scripting attacks or cause URL

Unicode encoding on a targeted system.

Solution

Apply appropriate software updates as mentioned in the   Apple Security

Updates.

Vendor Information

Apple

References

Apple

CVE Name

CVE-2019-9912

CVE-2019-9903

CVE-2019-9911

CVE-2019-9894

CVE-2019-9915

CVE-2019-9925

CVE-2019-9893

CVE-2019-9895

CVE-2019-9910

CVE-2019-9916

CVE-2019-9862