Technical
Advisory

Through sharp, technical and insightful analysis, the Payatu Team is constantly on the lookout for vulnerabilities and threats. This section exhibits a few of our findings.

...
...

Vulnerability

Safari Login AutoFill

Vulnerability Description

A malicious attacker may cause Safari to suggest a password for the wrong domain

CVE-ID

CVE-2020-9903

Vendor

Apple

Product

  • Safari for macOS before 13.1.2
  • iOS and iPadOS before 13.6

Disclosure Timeline

  1. 22 March 2020 reported to the vendor
  2. 15 July 2020 fixed released by the vendor

Credits

Nikhil Mittal