The host is installed with Apple Mac OS 12 before 12.2 or Apple Safari before 15.3 on Apple Mac OS 10.15.7 or Apple Mac OS 11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle a validation issue. On successful exploitation, processing a maliciously crafted mail message may lead to running arbitrary javascript.