Cross-Site Scripting Vulnerability in Safari Prior to iOS 12.1 and Safari 12.0.1

Cross-Site Scripting Vulnerability in Safari Prior to iOS 12.1 and Safari 12.0.1

CVE-2018-4377 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Learn more about our Cis Benchmark Audit For Apple Ios.