Medium severity6.5NVD Advisory· Published Dec 18, 2019· Updated Jun 17, 2026
CVE-2019-8515
CVE-2019-8515
Description
A cross-origin issue existed with the fetch API. This was addressed with improved input validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may disclose sensitive user information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
28= 12.2+ 1 more
- (no CPE)range: = 12.2
- (no CPE)range: unspecified
= 12.1+ 1 more
- (no CPE)range: = 12.1
- (no CPE)range: unspecified
- Range: = 12.9.4
= 12.2+ 1 more
- (no CPE)range: = 12.2
- (no CPE)range: unspecified
= 7.11+ 1 more
- (no CPE)range: = 7.11
- (no CPE)range: unspecified
- osv-coords18 versionspkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.0pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%207
< 2.24.1-lp150.2.19.1+ 17 more
- (no CPE)range: < 2.24.1-lp150.2.19.1
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-3.24.1
- (no CPE)range: < 2.24.1-3.24.1
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- (no CPE)range: < 2.24.1-2.41.5
- Range: unspecified
Patches
Vulnerability mechanics
References
5- support.apple.com/HT209599nvdVendor Advisory
- support.apple.com/HT209601nvdVendor Advisory
- support.apple.com/HT209603nvdVendor Advisory
- support.apple.com/HT209604nvdVendor Advisory
- support.apple.com/HT209605nvdVendor Advisory
News mentions
0No linked articles in our index yet.