Medium severity5.4NVD Advisory· Published Oct 27, 2020· Updated Jun 17, 2026
CVE-2020-9860
CVE-2020-9860
Description
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 13.0.5. Processing a maliciously crafted URL may lead to arbitrary javascript code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<13.0.5+ 1 more
- (no CPE)range: <13.0.5
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- support.apple.com/en-us/HT210922nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.