CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-8792

An injection issue was addressed with improved validation. This issue is fixed in Shazam Android App Version 9.25.0, Shazam iOS App Version 12.11.0. Processing a maliciously crafted URL may lead to arbitrary javascript code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.5%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://support.apple.com/HT210744
https://support.apple.com/HT210745
https://support.apple.com/HT210744
https://support.apple.com/HT210745

Products affected by CVE-2019-8792

Apple » Shazam » Version: 12.11.0

cpe:2.3:a:apple:shazam:12.11.0
Apple » Shazam » Version: 9.25.0

cpe:2.3:a:apple:shazam:9.25.0
Apple » Iphone Os » Version: N/A

cpe:2.3:o:apple:iphone_os:-
Google » Android » Version: N/A

cpe:2.3:o:google:android:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-8792

Products

Pricing

Contact Us