vulnerability

Apple iTunes security update for CVE-2019-8898

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Feb 12, 2020	Feb 12, 2020	Nov 2, 2020

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Feb 12, 2020

Added

Feb 12, 2020

Modified

Nov 2, 2020

Description

An information disclosure issue existed in the handling of the Storage Access API. This issue was addressed with improved logic. This issue is fixed in iOS 13.3 and iPadOS 13.3, tvOS 13.3, Safari 13.0.4, iTunes 12.10.3 for Windows. Visiting a maliciously crafted website may reveal sites a user has visited.

Solution

apple-itunes-upgrade-12_10_3

References

CVE-2019-8898
https://attackerkb.com/topics/CVE-2019-8898
URL-http://support.apple.com/kb/HT210793

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today