The host is installed with Safari before 14.0 on Apple Mac OS X 10.14.6 or 10.15.6 and is prone to an address bar spoofing vulnerability. A flaw is present in the application, which fails to properly handle an inconsistent user interface. Successful exploitation could allow attackers to cause address bar spoofing via a malicious website.