CVE-2020-9945

A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, Safari 14.0.1. Visiting a malicious website may lead to address bar spoofing.
References
Link Resource
https://support.apple.com/en-us/HT211931 Release Notes Vendor Advisory
https://support.apple.com/en-us/HT211934 Release Notes Vendor Advisory
http://seclists.org/fulldisclosure/2020/Dec/32 Mailing List Third Party Advisory
Configurations

Configuration 1

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*

Information

Published : 2020-12-08 08:15

Updated : 2022-06-02 06:56


NVD link : CVE-2020-9945

Mitre link : CVE-2020-9945

Products Affected
No products.
CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames