Apple.Safari.WebKit.HTMLFrameElementBase.isURLAllowed.XSS
Description
This indicates an attack attempt to exploit a Cross Site Scripting vulnerability in Apple Webkit.
The vulnerability is caused by an error when the vulnerable software handles malicious html files. It allows a remote attacker to execute arbitrary script code via a crafted web page.
Affected Products
Apple Safari prior to 12.1.1
Impact
System Compromise: Remote attackers can execute arbitrary script code in the context of the application.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://support.apple.com/en-us/HT210637
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |