{"id":"CVE-2019-8503","details":"A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the context of another website.","modified":"2026-03-15T21:56:48.836217Z","published":"2019-12-18T18:15:22.630Z","related":["SUSE-SU-2019:1137-1","SUSE-SU-2019:1155-1","openSUSE-SU-2019:1374-1"],"references":[{"type":"ADVISORY","url":"https://support.apple.com/HT209605"},{"type":"ADVISORY","url":"https://support.apple.com/HT209599"},{"type":"ADVISORY","url":"https://support.apple.com/HT209601"},{"type":"ADVISORY","url":"https://support.apple.com/HT209603"},{"type":"ADVISORY","url":"https://support.apple.com/HT209604"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-8503.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"7.11"}]},{"events":[{"introduced":"0"},{"fixed":"12.9.4"}]},{"events":[{"introduced":"0"},{"fixed":"12.1"}]},{"events":[{"introduced":"0"},{"fixed":"12.2"}]},{"events":[{"introduced":"0"},{"fixed":"12.2"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}