The host is installed with Apple iCloud before 6.2 and is prone to a same-origin bypass vulnerability. A flaw is present in the application, which fails to properly handle crafted elements on a web site. Successful exploitation could allow attackers to execute arbitrary code.