DEBIAN-CVE-2020-3902

DEBIAN-CVE-2020-3902 PUBLISHED CVSS 6.099999904632568 MEDIUM

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to a cross site scripting attack.

Risk Scores

CVSS v3.1

6.099999904632568

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products

Vendor	Product	Versions
Debian:11	wpewebkit	0, 0, 0
Debian:14	webkit2gtk	0, 0, 0
Debian:12	wpewebkit	0, 0, 0
Debian:14	wpewebkit	0, 0, 0
Debian:13	webkit2gtk	0, 0, 0
Debian:11	webkit2gtk	0, 0, 0
Debian:12	webkit2gtk	0, 0, 0
Debian:13	wpewebkit	0, 0, 0

Timeline

Apr 1, 2020 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2020-3902 advisory

Open in Interactive Console →