Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860
2021-09-13T00:00:00
ID CISA:7A03F1FDD93F2460E93364A81C411404 Type cisa Reporter CISA Modified 2021-09-13T00:00:00
Description
Apple has released security updates to address vulnerabilities—CVE-2021-30858 and CVE-2021-30860—in multiple products. An attacker could exploit these vulnerabilities to take control of an affected device. CISA is aware of public reporting that these vulnerabilities may have been exploited in the wild.
CISA encourages users and administrators to review the security update pages for the following products and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
Please share your thoughts.
We recently updated our anonymous product survey; we'd welcome your feedback.
{"id": "CISA:7A03F1FDD93F2460E93364A81C411404", "type": "cisa", "bulletinFamily": "info", "title": "Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860", "description": "Apple has released security updates to address vulnerabilities\u2014CVE-2021-30858 and CVE-2021-30860\u2014in multiple products. An attacker could exploit these vulnerabilities to take control of an affected device. CISA is aware of public reporting that these vulnerabilities may have been exploited in the wild.\n\nCISA encourages users and administrators to review the security update pages for the following products and apply the necessary updates.\n\n * [macOS Big Sur 11.6](<https://support.apple.com/en-us/HT212804 >)\n * [macOS Catalina](<https://support.apple.com/en-us/HT212805 >)\n * [watchOS 7.6.2](<https://support.apple.com/en-us/HT212806 >)\n * [iOS 14.8 and iPadOS 14.8](<https://support.apple.com/en-us/HT212807>)\n * [Safari 14.1.2](<https://support.apple.com/en-us/HT212808 >) \n\n\nThis product is provided subject to this Notification and this [Privacy & Use](<https://www.dhs.gov/privacy-policy>) policy.\n\n**Please share your thoughts.**\n\nWe recently updated our anonymous [product survey](<https://www.surveymonkey.com/r/CISA-cyber-survey?product=https://us-cert.cisa.gov/ncas/current-activity/2021/09/13/apple-releases-security-updates-address-cve-2021-30858-and-cve>); we'd welcome your feedback.\n", "published": "2021-09-13T00:00:00", "modified": "2021-09-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://us-cert.cisa.gov/ncas/current-activity/2021/09/13/apple-releases-security-updates-address-cve-2021-30858-and-cve", "reporter": "CISA", "references": ["https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212805", "https://support.apple.com/en-us/HT212806", "https://support.apple.com/en-us/HT212807", "https://support.apple.com/en-us/HT212808"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-15T18:09:53", "viewCount": 21, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212805.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-15T18:09:53", "rev": 2}, "score": {"value": 3.5, "vector": "NONE", "modified": "2021-09-15T18:09:53", "rev": 2}, "vulnersScore": 3.5}, "wildExploited": false}
{"attackerkb": [{"id": "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "hash": "5f1ea92f297e189dc8e96076039ebe8b", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-30860", "description": "An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n\n \n**Recent assessments:** \n \nAssessed Attacker Value: 0 \nAssessed Attacker Value: 0Assessed Attacker Value: 0\n", "published": "2021-08-24T00:00:00", "modified": "2021-09-15T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://attackerkb.com/topics/sTaEOrsIns/cve-2021-30860", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://seclists.org/fulldisclosure/2021/Sep/28", "http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/25", "http://seclists.org/fulldisclosure/2021/Sep/26", "http://seclists.org/fulldisclosure/2021/Sep/40", "http://seclists.org/fulldisclosure/2021/Sep/38", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://support.apple.com/kb/HT212824", "http://seclists.org/fulldisclosure/2021/Sep/50", "https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212805", "https://support.apple.com/en-us/HT212807", "https://support.apple.com/en-us/HT212806"], "cvelist": ["CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-10-04T22:42:35", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30860"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}, {"type": "apple", "idList": ["APPLE:E01F2833FC14279371768789610339B0"]}], "modified": "2021-10-04T22:42:35", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-10-04T22:42:35", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 0, "exploitability": 0}, "wildExploited": true, "wildExploitedCategory": {"Vendor Advisory": ""}, "wildExploitedReports": [{"category": "Vendor Advisory", "source_url": "https://support.apple.com/en-us/HT212807", "published": "2021-09-13T19:11:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860"], "Advisory": ["http://seclists.org/fulldisclosure/2021/Sep/28", "http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/25", "http://seclists.org/fulldisclosure/2021/Sep/26", "http://seclists.org/fulldisclosure/2021/Sep/40", "http://seclists.org/fulldisclosure/2021/Sep/38", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://support.apple.com/kb/HT212824", "http://seclists.org/fulldisclosure/2021/Sep/50"], "Miscellaneous": ["https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212805", "https://support.apple.com/en-us/HT212807", "https://support.apple.com/en-us/HT212806"]}, "tags": [], "mitre_vector": {}, "last_activity": "2021-09-15T00:00:00", "_object_type": "robots.models.attackerkb.AttackerKB", "_object_types": ["robots.models.base.Bulletin", "robots.models.attackerkb.AttackerKB"]}, {"id": "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "hash": "adeabbdd08b45d4a5c87bc60849e74c2", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n\n \n**Recent assessments:** \n \nAssessed Attacker Value: 0 \nAssessed Attacker Value: 0Assessed Attacker Value: 0\n", "published": "2021-08-24T00:00:00", "modified": "2021-09-16T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://attackerkb.com/topics/d9kio6IKH3/cve-2021-30858", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/25", "http://seclists.org/fulldisclosure/2021/Sep/29", "http://www.openwall.com/lists/oss-security/2021/09/20/1", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/", "http://seclists.org/fulldisclosure/2021/Sep/38", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://www.debian.org/security/2021/dsa-4975", "https://www.debian.org/security/2021/dsa-4976", "https://support.apple.com/kb/HT212824", "http://seclists.org/fulldisclosure/2021/Sep/50", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/", "https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212807"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-04T22:42:35", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "apple", "idList": ["APPLE:E01F2833FC14279371768789610339B0"]}], "modified": "2021-10-04T22:42:35", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-10-04T22:42:35", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 0, "exploitability": 0}, "wildExploited": true, "wildExploitedCategory": {"Vendor Advisory": ""}, "wildExploitedReports": [{"category": "Vendor Advisory", "source_url": "https://support.apple.com/en-us/HT212807", "published": "2021-09-13T19:12:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "Advisory": ["http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/25", "http://seclists.org/fulldisclosure/2021/Sep/29", "http://www.openwall.com/lists/oss-security/2021/09/20/1", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/", "http://seclists.org/fulldisclosure/2021/Sep/38", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://www.debian.org/security/2021/dsa-4975", "https://www.debian.org/security/2021/dsa-4976", "https://support.apple.com/kb/HT212824", "http://seclists.org/fulldisclosure/2021/Sep/50", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/"], "Miscellaneous": ["https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212807"]}, "tags": [], "mitre_vector": {}, "last_activity": "2021-09-16T00:00:00", "_object_type": "robots.models.attackerkb.AttackerKB", "_object_types": ["robots.models.base.Bulletin", "robots.models.attackerkb.AttackerKB"]}], "cve": [{"id": "CVE-2021-30860", "bulletinFamily": "NVD", "title": "CVE-2021-30860", "description": "An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "published": "2021-08-24T19:15:00", "modified": "2021-09-24T16:15:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30860", "reporter": "cve@mitre.org", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/50", "https://support.apple.com/en-us/HT212806", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://support.apple.com/en-us/HT212804", "http://seclists.org/fulldisclosure/2021/Sep/26", "https://support.apple.com/kb/HT212824", "https://support.apple.com/en-us/HT212805", "http://seclists.org/fulldisclosure/2021/Sep/38", "https://support.apple.com/en-us/HT212807", "http://seclists.org/fulldisclosure/2021/Sep/28", "http://seclists.org/fulldisclosure/2021/Sep/40", "http://seclists.org/fulldisclosure/2021/Sep/25"], "cvelist": ["CVE-2021-30860"], "immutableFields": [], "type": "cve", "lastseen": "2021-09-25T07:31:01", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-30860"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by the CVE program. Notes: none.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-08-25T07:35:12", "references": [], "rev": 2}, "score": {"modified": "2021-08-25T07:35:12", "rev": 2, "value": 0.1, "vector": "NONE"}}, "extraReferences": [], "hash": "fdb83b8fce4dc8e2c2b3879e92a6645e83fc17fed7f3ce00978c598b3a663f67", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "modified"}, {"hash": "e564bf45645722a7b6eda17c256fadaf", "key": "href"}, {"hash": "5ed5f85c04b1f2cdacd0a023d26af43e", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "extraReferences"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "477172680c2783bff74de9e75558468b", "key": "cvelist"}, {"hash": "f4e91d012dc6d1b65225921b73e53d33", "key": "title"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30860", "id": "CVE-2021-30860", "immutableFields": [], "lastseen": "2021-08-25T07:35:12", "modified": "2021-08-24T19:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": [], "reporter": "cve@mitre.org", "title": "CVE-2021-30860", "type": "cve", "viewCount": 3}, "different_elements": ["extraReferences", "cpe23", "cvss", "references", "description", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-08-25T07:35:12"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:watchos", "name": "apple watchos", "operator": "lt", "version": "7.6.2"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "lt", "version": "10.15.7"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:apple:mac_os_x:10.15.7"], "cpe23": ["cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:watchos:7.6.2:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "7.6.2", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "10.15.7", "versionStartIncluding": "10.15", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30860"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-190"], "description": "An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 4, "enchantments": {"dependencies": {"modified": "2021-09-22T07:26:50", "references": [{"idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL"], "type": "nessus"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"], "type": "krebs"}, {"idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"], "type": "threatpost"}, {"idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"], "type": "qualysblog"}, {"idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"], "type": "avleonov"}, {"idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"], "type": "malwarebytes"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-22T07:26:50", "rev": 2, "value": 4.0, "vector": "NONE"}}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "https://support.apple.com/en-us/HT212806", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212806"}, {"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "20210917 APPLE-SA-2021-09-13-2 watchOS 7.6.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/26"}, {"name": "20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/38"}, {"name": "20210921 APPLE-SA-2021-09-20-8 Additional information for APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/40"}, {"name": "20210917 APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/28"}, {"name": "20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/39"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212805", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212805"}], "hash": "21828f0a24547ef03f92d6cf348beb6564e7883d855e18a325a5559c248ef9ba", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "2505ee2bd4131918e8b7d9ea98543763", "key": "references"}, {"hash": "71fadfecd322a00962043bf5980da7de", "key": "cpeConfiguration"}, {"hash": "7731c00437a972e2e84589aa4191a890", "key": "affectedSoftware"}, {"hash": "c9615cab47afa047b6349973b1adb02f", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "2ae76161d39c17aef8ca38b9bfc8fde3", "key": "cwe"}, {"hash": "e564bf45645722a7b6eda17c256fadaf", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "2c984a8942f6c50e38b74191b8beb027", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6d562fcc0e02d924728979b90e16e258", "key": "cpe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "477172680c2783bff74de9e75558468b", "key": "cvelist"}, {"hash": "f4e91d012dc6d1b65225921b73e53d33", "key": "title"}, {"hash": "8b97872256f9ac486c6e10c18fca17e5", "key": "description"}, {"hash": "88d90e02c66ac03054de51e84425ef06", "key": "modified"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30860", "id": "CVE-2021-30860", "immutableFields": [], "lastseen": "2021-09-22T07:26:50", "modified": "2021-09-22T00:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "https://support.apple.com/en-us/HT212806", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://support.apple.com/en-us/HT212804", "http://seclists.org/fulldisclosure/2021/Sep/26", "https://support.apple.com/en-us/HT212805", "http://seclists.org/fulldisclosure/2021/Sep/38", "https://support.apple.com/en-us/HT212807", "http://seclists.org/fulldisclosure/2021/Sep/28", "http://seclists.org/fulldisclosure/2021/Sep/40", "http://seclists.org/fulldisclosure/2021/Sep/25"], "reporter": "cve@mitre.org", "title": "CVE-2021-30860", "type": "cve", "viewCount": 25}, "different_elements": ["extraReferences", "references", "modified"], "edition": 4, "lastseen": "2021-09-22T07:26:50"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:watchos", "name": "apple watchos", "operator": "lt", "version": "7.6.2"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "lt", "version": "10.15.7"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:apple:mac_os_x:10.15.7"], "cpe23": ["cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:watchos:7.6.2:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "7.6.2", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "10.15.7", "versionStartIncluding": "10.15", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30860"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-190"], "description": "An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-09-15T07:26:27", "references": [{"idList": ["MACOS_HT212804.NASL"], "type": "nessus"}, {"idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"], "type": "krebs"}, {"idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"], "type": "threatpost"}, {"idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"], "type": "malwarebytes"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-15T07:26:27", "rev": 2, "value": 4.5, "vector": "NONE"}}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "https://support.apple.com/en-us/HT212806", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212806"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212805", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212805"}], "hash": "6e01bdf4ca562cb096629d2adb5474d370727f5795afd60e561586fa764cd16f", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "794e7401555e3254a7d7f3fdf382664e", "key": "modified"}, {"hash": "71fadfecd322a00962043bf5980da7de", "key": "cpeConfiguration"}, {"hash": "7731c00437a972e2e84589aa4191a890", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "2ae76161d39c17aef8ca38b9bfc8fde3", "key": "cwe"}, {"hash": "e564bf45645722a7b6eda17c256fadaf", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "2c984a8942f6c50e38b74191b8beb027", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6d562fcc0e02d924728979b90e16e258", "key": "cpe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "477172680c2783bff74de9e75558468b", "key": "cvelist"}, {"hash": "f4e91d012dc6d1b65225921b73e53d33", "key": "title"}, {"hash": "8ae0508b37cabfb579c6266b3abca2fb", "key": "references"}, {"hash": "8b97872256f9ac486c6e10c18fca17e5", "key": "description"}, {"hash": "b5b1dc4ec397a76c7d229f6fcb57b69e", "key": "extraReferences"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30860", "id": "CVE-2021-30860", "immutableFields": [], "lastseen": "2021-09-15T07:26:27", "modified": "2021-09-14T15:42:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["https://support.apple.com/en-us/HT212806", "https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212805", "https://support.apple.com/en-us/HT212807"], "reporter": "cve@mitre.org", "title": "CVE-2021-30860", "type": "cve", "viewCount": 8}, "different_elements": ["extraReferences", "references", "modified"], "edition": 2, "lastseen": "2021-09-15T07:26:27"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:watchos", "name": "apple watchos", "operator": "lt", "version": "7.6.2"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "lt", "version": "10.15.7"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:apple:mac_os_x:10.15.7"], "cpe23": ["cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:watchos:7.6.2:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "7.6.2", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "10.15.7", "versionStartIncluding": "10.15", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30860"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-190"], "description": "An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 5, "enchantments": {"dependencies": {"modified": "2021-09-24T07:27:00", "references": [{"idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL"], "type": "nessus"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"], "type": "krebs"}, {"idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"], "type": "qualysblog"}, {"idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"], "type": "avleonov"}, {"idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"], "type": "malwarebytes"}, {"idList": ["APPLE:E01F2833FC14279371768789610339B0"], "type": "apple"}, {"idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"], "type": "threatpost"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-24T07:27:00", "rev": 2, "value": 4.0, "vector": "NONE"}}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "https://support.apple.com/en-us/HT212806", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212806"}, {"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "https://support.apple.com/kb/HT212824", "refsource": "CONFIRM", "tags": [], "url": "https://support.apple.com/kb/HT212824"}, {"name": "20210917 APPLE-SA-2021-09-13-2 watchOS 7.6.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/26"}, {"name": "20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/38"}, {"name": "20210921 APPLE-SA-2021-09-20-8 Additional information for APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/40"}, {"name": "20210917 APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/28"}, {"name": "20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/39"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212805", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212805"}], "hash": "4fabc22365b114e857548b30aa9637ca3af95d4109b37f3149a7732bd81b5eef", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71fadfecd322a00962043bf5980da7de", "key": "cpeConfiguration"}, {"hash": "7731c00437a972e2e84589aa4191a890", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "2ae76161d39c17aef8ca38b9bfc8fde3", "key": "cwe"}, {"hash": "e564bf45645722a7b6eda17c256fadaf", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "6802f296539f4d0ed8d184ff95c97b21", "key": "extraReferences"}, {"hash": "8994bc36dc7384bff3eb1be6cc2f7c25", "key": "modified"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "2c984a8942f6c50e38b74191b8beb027", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "1c0e6b43cf53708189cace9a6d5029d8", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6d562fcc0e02d924728979b90e16e258", "key": "cpe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "477172680c2783bff74de9e75558468b", "key": "cvelist"}, {"hash": "f4e91d012dc6d1b65225921b73e53d33", "key": "title"}, {"hash": "8b97872256f9ac486c6e10c18fca17e5", "key": "description"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30860", "id": "CVE-2021-30860", "immutableFields": [], "lastseen": "2021-09-24T07:27:00", "modified": "2021-09-23T19:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "https://support.apple.com/en-us/HT212806", "http://seclists.org/fulldisclosure/2021/Sep/39", "https://support.apple.com/en-us/HT212804", "http://seclists.org/fulldisclosure/2021/Sep/26", "https://support.apple.com/kb/HT212824", "https://support.apple.com/en-us/HT212805", "http://seclists.org/fulldisclosure/2021/Sep/38", "https://support.apple.com/en-us/HT212807", "http://seclists.org/fulldisclosure/2021/Sep/28", "http://seclists.org/fulldisclosure/2021/Sep/40", "http://seclists.org/fulldisclosure/2021/Sep/25"], "reporter": "cve@mitre.org", "title": "CVE-2021-30860", "type": "cve", "viewCount": 26}, "different_elements": ["extraReferences", "references", "modified"], "edition": 5, "lastseen": "2021-09-24T07:27:00"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:watchos", "name": "apple watchos", "operator": "lt", "version": "7.6.2"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "lt", "version": "10.15.7"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:apple:mac_os_x:10.15.7"], "cpe23": ["cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:watchos:7.6.2:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "7.6.2", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "10.15.7", "versionStartIncluding": "10.15", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30860"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-190"], "description": "An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 3, "enchantments": {"dependencies": {"modified": "2021-09-18T09:26:26", "references": [{"idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL"], "type": "nessus"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"], "type": "krebs"}, {"idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"], "type": "threatpost"}, {"idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"], "type": "qualysblog"}, {"idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"], "type": "avleonov"}, {"idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"], "type": "malwarebytes"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-18T09:26:26", "rev": 2, "value": 4.0, "vector": "NONE"}}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "https://support.apple.com/en-us/HT212806", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212806"}, {"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "20210917 APPLE-SA-2021-09-13-2 watchOS 7.6.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/26"}, {"name": "20210917 APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/28"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212805", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212805"}], "hash": "9fa9b5709a13bd013934a35cde04172e9d19e59e535ffd3ebf82bc79125b395b", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71fadfecd322a00962043bf5980da7de", "key": "cpeConfiguration"}, {"hash": "f7277e1dd251d7a64a1cc5ccc8fdd022", "key": "modified"}, {"hash": "7731c00437a972e2e84589aa4191a890", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "cb664c7a7808e0f9936de8d26893477c", "key": "extraReferences"}, {"hash": "2ae76161d39c17aef8ca38b9bfc8fde3", "key": "cwe"}, {"hash": "e564bf45645722a7b6eda17c256fadaf", "key": "href"}, {"hash": "6fe758d3fb8869fad8e7c4c0954a4c96", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "2c984a8942f6c50e38b74191b8beb027", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6d562fcc0e02d924728979b90e16e258", "key": "cpe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "477172680c2783bff74de9e75558468b", "key": "cvelist"}, {"hash": "f4e91d012dc6d1b65225921b73e53d33", "key": "title"}, {"hash": "8b97872256f9ac486c6e10c18fca17e5", "key": "description"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30860", "id": "CVE-2021-30860", "immutableFields": [], "lastseen": "2021-09-18T09:26:26", "modified": "2021-09-17T22:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "https://support.apple.com/en-us/HT212806", "https://support.apple.com/en-us/HT212804", "http://seclists.org/fulldisclosure/2021/Sep/26", "https://support.apple.com/en-us/HT212805", "https://support.apple.com/en-us/HT212807", "http://seclists.org/fulldisclosure/2021/Sep/28", "http://seclists.org/fulldisclosure/2021/Sep/25"], "reporter": "cve@mitre.org", "title": "CVE-2021-30860", "type": "cve", "viewCount": 23}, "different_elements": ["extraReferences", "references", "modified"], "edition": 3, "lastseen": "2021-09-18T09:26:26"}], "edition": 6, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "7731c00437a972e2e84589aa4191a890"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "6d562fcc0e02d924728979b90e16e258"}, {"key": "cpe23", "hash": "2c984a8942f6c50e38b74191b8beb027"}, {"key": "cpeConfiguration", "hash": "71fadfecd322a00962043bf5980da7de"}, {"key": "cvelist", "hash": "477172680c2783bff74de9e75558468b"}, {"key": "cvss", "hash": "4cac367be6dd8242802053610be9dee6"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "2ae76161d39c17aef8ca38b9bfc8fde3"}, {"key": "description", "hash": "8b97872256f9ac486c6e10c18fca17e5"}, {"key": "extraReferences", "hash": "439d5166ac1bfe4e4b7a6bccf2ff2b64"}, {"key": "href", "hash": "e564bf45645722a7b6eda17c256fadaf"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "36e32f759704fb12ef8bc45be579f1fe"}, {"key": "published", "hash": "c8d383a4282ac57936d0777e6fd46ef5"}, {"key": "references", "hash": "cb8290d4f2fe800d0e190c9b15f567fa"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "f4e91d012dc6d1b65225921b73e53d33"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "d83c44396244db09f9de2babd3a5b91bde3e16d2ac272e7bd2a3ff7b7414325d", "viewCount": 36, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}, {"type": "apple", "idList": ["APPLE:E01F2833FC14279371768789610339B0"]}], "modified": "2021-09-25T07:31:01", "rev": 2}, "score": {"value": 4.0, "vector": "NONE", "modified": "2021-09-25T07:31:01", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}], "modified": "2021-09-25T07:31:01"}}, "objectVersion": "1.6", "cpe": ["cpe:/o:apple:mac_os_x:10.15.7"], "affectedSoftware": [{"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "eq", "version": "10.15.7"}, {"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:watchos", "name": "apple watchos", "operator": "lt", "version": "7.6.2"}, {"cpeName": "apple:mac_os_x", "name": "apple mac os x", "operator": "lt", "version": "10.15.7"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:watchos:7.6.2:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "7.6.2", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "10.15.7", "versionStartIncluding": "10.15", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "https://support.apple.com/en-us/HT212806", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212806"}, {"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "https://support.apple.com/kb/HT212824", "refsource": "CONFIRM", "tags": [], "url": "https://support.apple.com/kb/HT212824"}, {"name": "20210917 APPLE-SA-2021-09-13-2 watchOS 7.6.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/26"}, {"name": "20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/38"}, {"name": "20210921 APPLE-SA-2021-09-20-8 Additional information for APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/40"}, {"name": "20210917 APPLE-SA-2021-09-13-4 Security Update 2021-005 Catalina", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/28"}, {"name": "20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/50"}, {"name": "20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/39"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212805", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212805"}], "cpe23": ["cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*", "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*"], "cwe": ["CWE-190"], "scheme": null}, {"id": "CVE-2021-30858", "bulletinFamily": "NVD", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "published": "2021-08-24T19:15:00", "modified": "2021-10-04T03:15:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30858", "reporter": "cve@mitre.org", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/50", "http://www.openwall.com/lists/oss-security/2021/09/20/1", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/", "http://seclists.org/fulldisclosure/2021/Sep/39", "http://seclists.org/fulldisclosure/2021/Sep/29", "https://support.apple.com/en-us/HT212804", "https://support.apple.com/kb/HT212824", "http://seclists.org/fulldisclosure/2021/Sep/38", "https://www.debian.org/security/2021/dsa-4975", "https://support.apple.com/en-us/HT212807", "https://www.debian.org/security/2021/dsa-4976", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/", "http://seclists.org/fulldisclosure/2021/Sep/25"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "type": "cve", "lastseen": "2021-10-04T07:28:01", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-30858"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-09-15T07:26:27", "references": [{"idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-15T07:26:27", "rev": 2, "value": 2.8, "vector": "NONE"}}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": [], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": [], "url": "https://support.apple.com/en-us/HT212807"}], "hash": "683abc1a054df2c6ed5266e4d49a5a70cbbb0dd7e5317fa332b057a5535f0836", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71615a8790f98256dfeb15982fabc8fa", "key": "description"}, {"hash": "798b2eb60831f55dfbfd523b9f70b8f9", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "f5125f6c27c8d5c26ba9f0e411cd21e0", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "a17778e10e4a046b00edaab3c833220a", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "9ac169b0e89667ca16a030dde51f6c99", "key": "extraReferences"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "fb024491f82919f8c7a7dfb0e9d5fe05", "key": "title"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "ae83e69fd8136edde8dcf6070970b5c8", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30858", "id": "CVE-2021-30858", "immutableFields": [], "lastseen": "2021-09-15T07:26:27", "modified": "2021-09-14T15:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212807"], "reporter": "cve@mitre.org", "title": "CVE-2021-30858", "type": "cve", "viewCount": 6}, "different_elements": ["extraReferences", "cvss", "modified", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 2, "lastseen": "2021-09-15T07:26:27"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30858"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-416"], "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 5, "enchantments": {"dependencies": {"modified": "2021-09-21T07:26:41", "references": [{"idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL"], "type": "nessus"}, {"idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"], "type": "qualysblog"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-21T07:26:41", "rev": 2, "value": 2.9, "vector": "NONE"}}, "extraReferences": [{"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/29"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2021/09/20/1"}], "hash": "b48b1b18412cfdbea1fbe106fba1cd655526f74e160eca84ef27425ebd119d95", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71615a8790f98256dfeb15982fabc8fa", "key": "description"}, {"hash": "798b2eb60831f55dfbfd523b9f70b8f9", "key": "href"}, {"hash": "0889b1fb89fa72a5bf4fdb1bd64f12d8", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "6e8bd440f4fb55ae63bba09dfc27a808", "key": "cwe"}, {"hash": "f5125f6c27c8d5c26ba9f0e411cd21e0", "key": "cvelist"}, {"hash": "740dd010f75bece01febb1d828b07e5a", "key": "cpeConfiguration"}, {"hash": "db1ac8d0b30a29b6019f90496a5c69a4", "key": "modified"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "c2e11d0aaf7cb9c9509117d06c1e2466", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "fb024491f82919f8c7a7dfb0e9d5fe05", "key": "title"}, {"hash": "e395ef8a0e45d44dc767c6da9d37653f", "key": "extraReferences"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30858", "id": "CVE-2021-30858", "immutableFields": [], "lastseen": "2021-09-21T07:26:41", "modified": "2021-09-20T15:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "http://www.openwall.com/lists/oss-security/2021/09/20/1", "http://seclists.org/fulldisclosure/2021/Sep/29", "https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212807", "http://seclists.org/fulldisclosure/2021/Sep/25"], "reporter": "cve@mitre.org", "title": "CVE-2021-30858", "type": "cve", "viewCount": 27}, "different_elements": ["extraReferences", "references", "modified"], "edition": 5, "lastseen": "2021-09-21T07:26:41"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30858"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-416"], "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 6, "enchantments": {"dependencies": {"modified": "2021-09-22T07:26:50", "references": [{"idList": ["FEDORA:D55FD30AE7DD"], "type": "fedora"}, {"idList": ["UB:CVE-2021-30858"], "type": "ubuntucve"}, {"idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"], "type": "debian"}, {"idList": ["RH:CVE-2021-30858"], "type": "redhatcve"}, {"idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL"], "type": "nessus"}, {"idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"], "type": "qualysblog"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-22T07:26:50", "rev": 2, "value": 2.9, "vector": "NONE"}}, "extraReferences": [{"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "FEDORA-2021-c00e45b6c0", "refsource": "FEDORA", "tags": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/"}, {"name": "20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/29"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/38"}, {"name": "[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2021/09/20/1"}, {"name": "20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/39"}], "hash": "2866bdb7be2f5956634977f2f585c9bd554539a9f559563967d3d8f1df1f9557", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71615a8790f98256dfeb15982fabc8fa", "key": "description"}, {"hash": "798b2eb60831f55dfbfd523b9f70b8f9", "key": "href"}, {"hash": "0889b1fb89fa72a5bf4fdb1bd64f12d8", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "6e8bd440f4fb55ae63bba09dfc27a808", "key": "cwe"}, {"hash": "f5125f6c27c8d5c26ba9f0e411cd21e0", "key": "cvelist"}, {"hash": "740dd010f75bece01febb1d828b07e5a", "key": "cpeConfiguration"}, {"hash": "50cc5e6ec53d737d1bba27b727d6a4db", "key": "extraReferences"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "fb024491f82919f8c7a7dfb0e9d5fe05", "key": "title"}, {"hash": "eede8bfb200435e9d538d0cbb94b3b3f", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "88d90e02c66ac03054de51e84425ef06", "key": "modified"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30858", "id": "CVE-2021-30858", "immutableFields": [], "lastseen": "2021-09-22T07:26:50", "modified": "2021-09-22T00:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "http://www.openwall.com/lists/oss-security/2021/09/20/1", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/", "http://seclists.org/fulldisclosure/2021/Sep/39", "http://seclists.org/fulldisclosure/2021/Sep/29", "https://support.apple.com/en-us/HT212804", "http://seclists.org/fulldisclosure/2021/Sep/38", "https://support.apple.com/en-us/HT212807", "http://seclists.org/fulldisclosure/2021/Sep/25"], "reporter": "cve@mitre.org", "title": "CVE-2021-30858", "type": "cve", "viewCount": 28}, "different_elements": ["extraReferences", "references", "modified"], "edition": 6, "lastseen": "2021-09-22T07:26:50"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30858"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-416"], "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 9, "enchantments": {"dependencies": {"modified": "2021-09-25T07:31:01", "references": [{"idList": ["FEDORA:D55FD30AE7DD"], "type": "fedora"}, {"idList": ["UB:CVE-2021-30858"], "type": "ubuntucve"}, {"idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"], "type": "debian"}, {"idList": ["RH:CVE-2021-30858"], "type": "redhatcve"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["APPLE_IOS_148_CHECK.NBIN", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL"], "type": "nessus"}, {"idList": ["USN-5087-1"], "type": "ubuntu"}, {"idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"], "type": "qualysblog"}, {"idList": ["APPLE:E01F2833FC14279371768789610339B0"], "type": "apple"}, {"idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}, {"idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"], "type": "threatpost"}], "rev": 2}, "score": {"modified": "2021-09-25T07:31:01", "rev": 2, "value": 3.0, "vector": "NONE"}}, "extraReferences": [{"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "FEDORA-2021-c00e45b6c0", "refsource": "FEDORA", "tags": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/"}, {"name": "20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/29"}, {"name": "DSA-4976", "refsource": "DEBIAN", "tags": [], "url": "https://www.debian.org/security/2021/dsa-4976"}, {"name": "DSA-4975", "refsource": "DEBIAN", "tags": [], "url": "https://www.debian.org/security/2021/dsa-4975"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "https://support.apple.com/kb/HT212824", "refsource": "CONFIRM", "tags": [], "url": "https://support.apple.com/kb/HT212824"}, {"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/38"}, {"name": "[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2021/09/20/1"}, {"name": "20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/50"}, {"name": "20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/39"}], "hash": "2905cd50fb14ab7927c3efec6c737529742789ac08da6ed3d20ece2dfe6be73a", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71615a8790f98256dfeb15982fabc8fa", "key": "description"}, {"hash": "798b2eb60831f55dfbfd523b9f70b8f9", "key": "href"}, {"hash": "0889b1fb89fa72a5bf4fdb1bd64f12d8", "key": "affectedSoftware"}, {"hash": "0fb8d9d9a9422840e6d206d6aebcd78e", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "36e32f759704fb12ef8bc45be579f1fe", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "6e8bd440f4fb55ae63bba09dfc27a808", "key": "cwe"}, {"hash": "f5125f6c27c8d5c26ba9f0e411cd21e0", "key": "cvelist"}, {"hash": "740dd010f75bece01febb1d828b07e5a", "key": "cpeConfiguration"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "fb024491f82919f8c7a7dfb0e9d5fe05", "key": "title"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "382991edb4d7829fdb4c60d7db402a88", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30858", "id": "CVE-2021-30858", "immutableFields": [], "lastseen": "2021-09-25T07:31:01", "modified": "2021-09-24T16:15:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["http://seclists.org/fulldisclosure/2021/Sep/27", "http://seclists.org/fulldisclosure/2021/Sep/50", "http://www.openwall.com/lists/oss-security/2021/09/20/1", "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/", "http://seclists.org/fulldisclosure/2021/Sep/39", "http://seclists.org/fulldisclosure/2021/Sep/29", "https://support.apple.com/en-us/HT212804", "https://support.apple.com/kb/HT212824", "http://seclists.org/fulldisclosure/2021/Sep/38", "https://www.debian.org/security/2021/dsa-4975", "https://support.apple.com/en-us/HT212807", "https://www.debian.org/security/2021/dsa-4976", "http://seclists.org/fulldisclosure/2021/Sep/25"], "reporter": "cve@mitre.org", "title": "CVE-2021-30858", "type": "cve", "viewCount": 35}, "different_elements": ["extraReferences", "references", "modified"], "edition": 9, "lastseen": "2021-09-25T07:31:01"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-30858"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-416"], "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.", "edition": 3, "enchantments": {"dependencies": {"modified": "2021-09-16T07:26:26", "references": [{"idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"], "type": "thn"}, {"idList": ["MACOS_HT212804.NASL"], "type": "nessus"}, {"idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"], "type": "hivepro"}, {"idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"], "type": "cisa"}], "rev": 2}, "score": {"modified": "2021-09-16T07:26:26", "rev": 2, "value": 2.9, "vector": "NONE"}}, "extraReferences": [{"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}], "hash": "18ca451dd4682805db3bec7ea4fcdadec469305423adbf066da6cc987a989050", "hashmap": [{"hash": "c8d383a4282ac57936d0777e6fd46ef5", "key": "published"}, {"hash": "71615a8790f98256dfeb15982fabc8fa", "key": "description"}, {"hash": "798b2eb60831f55dfbfd523b9f70b8f9", "key": "href"}, {"hash": "0889b1fb89fa72a5bf4fdb1bd64f12d8", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "fd5f7ccc4bd86ac3ddc26a881d5b5fde", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "6e8bd440f4fb55ae63bba09dfc27a808", "key": "cwe"}, {"hash": "f5125f6c27c8d5c26ba9f0e411cd21e0", "key": "cvelist"}, {"hash": "740dd010f75bece01febb1d828b07e5a", "key": "cpeConfiguration"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "fb024491f82919f8c7a7dfb0e9d5fe05", "key": "title"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "eadfb68af4d3f5aa111de5dfc34bd524", "key": "modified"}, {"hash": "ae83e69fd8136edde8dcf6070970b5c8", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-30858", "id": "CVE-2021-30858", "immutableFields": [], "lastseen": "2021-09-16T07:26:26", "modified": "2021-09-15T12:55:00", "objectVersion": "1.6", "published": "2021-08-24T19:15:00", "references": ["https://support.apple.com/en-us/HT212804", "https://support.apple.com/en-us/HT212807"], "reporter": "cve@mitre.org", "title": "CVE-2021-30858", "type": "cve", "viewCount": 9}, "different_elements": ["extraReferences", "references", "modified"], "edition": 3, "lastseen": "2021-09-16T07:26:26"}], "edition": 10, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "0889b1fb89fa72a5bf4fdb1bd64f12d8"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpeConfiguration", "hash": "740dd010f75bece01febb1d828b07e5a"}, {"key": "cvelist", "hash": "f5125f6c27c8d5c26ba9f0e411cd21e0"}, {"key": "cvss", "hash": "4cac367be6dd8242802053610be9dee6"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "6e8bd440f4fb55ae63bba09dfc27a808"}, {"key": "description", "hash": "71615a8790f98256dfeb15982fabc8fa"}, {"key": "extraReferences", "hash": "fcbd21ee18e61b405539e86690fc0e26"}, {"key": "href", "hash": "798b2eb60831f55dfbfd523b9f70b8f9"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "ab6e94eb5fe64a16444ebd44f5ead74f"}, {"key": "published", "hash": "c8d383a4282ac57936d0777e6fd46ef5"}, {"key": "references", "hash": "0ee5ccfb85afe3d45a14a780b203e209"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "fb024491f82919f8c7a7dfb0e9d5fe05"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "dd0fc2b7a717cc1370fd1024be6ba97748d3615e7d896fa0e04e36a24d3cb528", "viewCount": 46, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "apple", "idList": ["APPLE:E01F2833FC14279371768789610339B0"]}], "modified": "2021-10-04T07:28:01", "rev": 2}, "score": {"value": 3.0, "vector": "NONE", "modified": "2021-10-04T07:28:01", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}], "modified": "2021-10-04T07:28:01"}}, "objectVersion": "1.6", "cpe": [], "affectedSoftware": [{"cpeName": "apple:iphone_os", "name": "apple iphone os", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:ipados", "name": "apple ipados", "operator": "lt", "version": "14.8"}, {"cpeName": "apple:macos", "name": "apple macos", "operator": "lt", "version": "11.6"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:11.6:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "11.6", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:ipados:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:apple:iphone_os:14.8:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "14.8", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "FEDORA-2021-edf6957b7d", "refsource": "FEDORA", "tags": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/"}, {"name": "20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/27"}, {"name": "https://support.apple.com/en-us/HT212804", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212804"}, {"name": "FEDORA-2021-c00e45b6c0", "refsource": "FEDORA", "tags": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/"}, {"name": "20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/29"}, {"name": "DSA-4976", "refsource": "DEBIAN", "tags": [], "url": "https://www.debian.org/security/2021/dsa-4976"}, {"name": "DSA-4975", "refsource": "DEBIAN", "tags": [], "url": "https://www.debian.org/security/2021/dsa-4975"}, {"name": "20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/25"}, {"name": "https://support.apple.com/kb/HT212824", "refsource": "CONFIRM", "tags": [], "url": "https://support.apple.com/kb/HT212824"}, {"name": "https://support.apple.com/en-us/HT212807", "refsource": "MISC", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://support.apple.com/en-us/HT212807"}, {"name": "20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/38"}, {"name": "[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005", "refsource": "MLIST", "tags": [], "url": "http://www.openwall.com/lists/oss-security/2021/09/20/1"}, {"name": "20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/50"}, {"name": "20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6", "refsource": "FULLDISC", "tags": [], "url": "http://seclists.org/fulldisclosure/2021/Sep/39"}], "cpe23": [], "cwe": ["CWE-416"], "scheme": null}], "redhatcve": [{"id": "RH:CVE-2021-30858", "hash": "8cebeb062e6cd81f9bc3f1ce22c327fd", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A flaw was found in webkitgtk. This flaw could allow an attacker to use maliciously crafted web content leading to arbitrary code execution.\n#### Mitigation\n\nThis flaw can be mitigated by either disabling JavaScript or by disabling IndexedDB \n\n", "published": "2021-09-20T21:33:04", "modified": "2021-10-11T19:10:28", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://webkitgtk.org/security/WSA-2021-0005.html\nhttps://www.openwall.com/lists/oss-security/2021/09/20/1", "https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-11T19:27:11", "history": [{"bulletin": {"id": "RH:CVE-2021-30858", "hash": "0b2c09b2826e63e1ae32970f2a52ff77", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n", "published": "2021-09-20T21:33:04", "modified": "2021-09-20T22:22:52", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-21T10:26:49", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, "lastseen": "2021-09-21T10:26:49", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "RH:CVE-2021-30858", "hash": "f3e02883b13a6094b924149cb24f27a1", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n", "published": "2021-09-20T21:33:04", "modified": "2021-09-21T19:09:29", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-21T19:28:42", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, "lastseen": "2021-09-21T19:28:42", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "RH:CVE-2021-30858", "hash": "3e270e2a3f5710fcefd6832a95c08858", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n", "published": "2021-09-20T21:33:04", "modified": "2021-09-21T20:03:12", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-21T22:32:55", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-21T22:32:55", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-21T22:32:55", "rev": 2}}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, "lastseen": "2021-09-21T22:32:55", "differentElements": ["modified", "references"], "edition": 3}, {"bulletin": {"id": "RH:CVE-2021-30858", "hash": "b4fc1588a8dd8c94986d33a900e5a0d1", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.\n", "published": "2021-09-20T21:33:04", "modified": "2021-10-01T10:56:41", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://webkitgtk.org/security/WSA-2021-0005.html\nhttps://www.openwall.com/lists/oss-security/2021/09/20/1", "https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-01T13:27:05", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-21T22:32:55", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-21T22:32:55", "rev": 2}}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, "lastseen": "2021-10-01T13:27:05", "differentElements": ["description", "modified"], "edition": 4}, {"bulletin": {"id": "RH:CVE-2021-30858", "hash": "4890edf4719b6b0ad25a8261ccf941fa", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A flaw was found in webkitgtk. This flaw could allow an attacker to use maliciously crafted web content leading to arbitrary code execution.\n", "published": "2021-09-20T21:33:04", "modified": "2021-10-01T14:39:15", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://webkitgtk.org/security/WSA-2021-0005.html\nhttps://www.openwall.com/lists/oss-security/2021/09/20/1", "https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-01T16:37:07", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-21T22:32:55", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-21T22:32:55", "rev": 2}}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, "lastseen": "2021-10-01T16:37:07", "differentElements": ["description", "modified"], "edition": 5}, {"bulletin": {"id": "RH:CVE-2021-30858", "hash": "2ec45236c68de75da9cef2a8a1e7fc26", "type": "redhatcve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A flaw was found in webkitgtk. This flaw could allow an attacker to use maliciously crafted web content leading to arbitrary code execution.\n#### Mitigation\n\nThis flaw can be mitigated by either disabling JavaScript or by disabling IndexedDB \n\n", "published": "2021-09-20T21:33:04", "modified": "2021-10-07T16:00:49", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://access.redhat.com/security/cve/cve-2021-30858", "reporter": "redhat.com", "references": ["https://webkitgtk.org/security/WSA-2021-0005.html\nhttps://www.openwall.com/lists/oss-security/2021/09/20/1", "https://bugzilla.redhat.com/show_bug.cgi?id=2006099"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-07T16:29:23", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "nessus", "idList": ["APPLE_IOS_1255_CHECK.NBIN", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3282-1.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "APPLE_IOS_148_CHECK.NBIN", "701363.PASL", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4975.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-10-07T16:29:23", "rev": 2}, "score": {"value": 4.5, "vector": "NONE", "modified": "2021-10-07T16:29:23", "rev": 2}}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}, "lastseen": "2021-10-07T16:29:23", "differentElements": ["modified"], "edition": 6}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-11T19:27:11", "rev": 2}, "score": {"value": 4.6, "vector": "NONE", "modified": "2021-10-11T19:27:11", "rev": 2}}, "objectVersion": "1.6", "vendorCvss": {"score": "8.8", "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "_object_type": "robots.models.redhatcve.RedhatCVEBulletin", "_object_types": ["robots.models.redhatcve.RedhatCVEBulletin", "robots.models.base.Bulletin"]}], "ubuntucve": [{"id": "UB:CVE-2021-30858", "hash": "5f78574f80f403ad5a36046fdb27b064", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This\nissue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing\nmaliciously crafted web content may lead to arbitrary code execution. Apple\nis aware of a report that this issue may have been actively exploited.\n\n#### Notes\n\nAuthor| Note \n---|--- \n[jdstrand](<https://launchpad.net/~jdstrand>) | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8\n", "published": "2021-08-24T00:00:00", "modified": "2021-08-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2021-30858", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://webkitgtk.org/security/WSA-2021-0005.html", "https://ubuntu.com/security/notices/USN-5087-1", "https://nvd.nist.gov/vuln/detail/CVE-2021-30858", "https://launchpad.net/bugs/cve/CVE-2021-30858", "https://security-tracker.debian.org/tracker/CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-17T21:20:17", "history": [{"bulletin": {"id": "UB:CVE-2021-30858", "hash": "492825564b991e17368d3e8a5c5740dc", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "security update\n\n#### Notes\n\nAuthor| Note \n---|--- \n[jdstrand](<https://launchpad.net/~jdstrand>) | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8\n", "published": "2021-09-20T00:00:00", "modified": "2021-09-20T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2021-30858", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://webkitgtk.org/security/WSA-2021-0005.html", "https://nvd.nist.gov/vuln/detail/CVE-2021-30858", "https://launchpad.net/bugs/cve/CVE-2021-30858", "https://security-tracker.debian.org/tracker/CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-21T21:22:11", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL"]}], "modified": "2021-09-21T21:22:11", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2021-09-21T21:22:11", "rev": 2}}, "objectVersion": "1.6", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}], "bugs": []}, "lastseen": "2021-09-21T21:22:11", "differentElements": ["affectedPackage", "description", "modified", "published", "references"], "edition": 1}, {"bulletin": {"id": "UB:CVE-2021-30858", "hash": "3c76a009c643a383d79c1da94eb5ef40", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2021-30858", "description": "A use after free issue was addressed with improved memory management. This\nissue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing\nmaliciously crafted web content may lead to arbitrary code execution. Apple\nis aware of a report that this issue may have been actively exploited.\n\n#### Notes\n\nAuthor| Note \n---|--- \n[jdstrand](<https://launchpad.net/~jdstrand>) | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8\n", "published": "2021-08-24T00:00:00", "modified": "2021-08-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2021-30858", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://webkitgtk.org/security/WSA-2021-0005.html", "https://ubuntu.com/security/notices/USN-5087-1", "https://nvd.nist.gov/vuln/detail/CVE-2021-30858", "https://launchpad.net/bugs/cve/CVE-2021-30858", "https://security-tracker.debian.org/tracker/CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-22T21:20:25", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL", "701363.PASL", "SUSE_SU-2021-3353-1.NASL", "SUSE_SU-2021-3296-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "OPENSUSE-2021-3353.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3282-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-22T21:20:25", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-09-22T21:20:25", "rev": 2}}, "objectVersion": "1.6", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "2.32.4-0ubuntu0.21.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "2.32.4-0ubuntu0.20.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "2.32.4-0ubuntu0.18.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}], "bugs": []}, "lastseen": "2021-09-22T21:20:25", "differentElements": ["affectedPackage"], "edition": 2}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-17T21:20:17", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-10-17T21:20:17", "rev": 2}}, "objectVersion": "1.6", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "21.10", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-opensource-src"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "qtwebkit-source"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "2.32.4-0ubuntu0.21.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "2.32.4-0ubuntu0.20.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "2.32.4-0ubuntu0.18.04.1", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkit2gtk"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "18.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "16.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "webkitgtk"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "21.10", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "21.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}, {"OS": "ubuntu", "OSVersion": "20.04", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "wpewebkit"}], "bugs": [], "_object_type": "robots.models.ubuntucve.UbuntuCVEBulletin", "_object_types": ["robots.models.ubuntucve.UbuntuCVEBulletin", "robots.models.base.Bulletin"]}], "thn": [{"id": "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "hash": "12d958873159e53c277a50d2ee5a5ef2", "type": "thn", "bulletinFamily": "info", "title": "Apple Issues Urgent Updates to Fix New Zero-Day Linked to Pegasus Spyware", "description": "[](<https://thehackernews.com/images/-xrJNXUUrPpA/YUAmXL5uYDI/AAAAAAAADyk/KnzZD6V6H1YU07j0N5PjRNos-MQJgKVnwCLcBGAsYHQ/s0/apple-update.jpg>)\n\nApple has released [iOS 14.8, iPadOS 14.8](<https://support.apple.com/en-us/HT212807>), [watchOS 7.6.2](<https://support.apple.com/en-us/HT212806>), [macOS Big Sur 11.6](<https://support.apple.com/en-us/HT212804>), and [Safari 14.1.2](<https://support.apple.com/en-us/HT212808>) to fix two actively exploited vulnerabilities, one of which defeated extra security protections built into the operating system.\n\nThe list of two flaws is as follows -\n\n * **CVE-2021-30858** (WebKit) - A use after free issue that could result in arbitrary code execution when processing maliciously crafted web content. The flaw has been addressed with improved memory management.\n * **CVE-2021-30860** (CoreGraphics) - An integer overflow vulnerability that could lead to arbitrary code execution when processing a maliciously crafted PDF document. The bug has been remediated with improved input validation.\n\n\"Apple is aware of a report that this issue may have been actively exploited,\" the iPhone maker noted in its advisory.\n\nThe updates arrive weeks after researchers from the University of Toronto's Citizen Lab revealed details of a zero-day exploit called \"[FORCEDENTRY](<https://thehackernews.com/2021/08/bahraini-activists-targeted-using-new.html>)\" (aka Megalodon) that was weaponized by Israeli surveillance vendor NSO Group and allegedly put to use by the government of Bahrain to install Pegasus spyware on the phones of nine activists in the country since February this year.\n\nBesides being triggered simply by sending a malicious message to the target, FORCEDENTRY is also notable for the fact that it expressly undermines a new software security feature called [BlastDoor](<https://thehackernews.com/2021/01/google-uncovers-new-ios-security.html>) that Apple baked into iOS 14 to prevent zero-click intrusions by filtering untrusted data sent over iMessage.\n\n\"Our latest discovery of yet another Apple zero day employed as part of NSO Group's arsenal further illustrates that companies like NSO Group are facilitating 'despotism-as-a-service' for unaccountable government security agencies,\" Citizen Lab researchers [said](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>).\n\n\"Ubiquitous chat apps have become a major target for the most sophisticated threat actors, including nation state espionage operations and the mercenary spyware companies that service them. As presently engineered, many chat apps have become an irresistible soft target,\" they added.\n\nCitizen Lab said it found the never-before-seen malware on the phone of an unnamed Saudi activist, with the exploit chain kicking in when victims receive a text message containing a malicious GIF image that, in reality, are Adobe PSD (Photoshop Document files) and PDF files designed to crash the iMessage component responsible for automatically rendering images and deploy the surveillance tool.\n\nCVE-2021-30858, on the other hand, is the latest in a number of WebKit zero-day flaws Apple has rectified this year alone. With this set of latest updates, the company has patched a total of [15 zero-day vulnerabilities](<https://thehackernews.com/2021/07/apple-releases-urgent-0-day-bug-patch.html>) since the start of 2021.\n\nApple iPhone, iPad, Mac, and Apple Watch users are advised to immediately update their software to mitigate any potential threats arising out of active exploitation of the flaws.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-14T04:35:00", "modified": "2021-09-14T05:26:33", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-14T06:39:04", "history": [{"bulletin": {"id": "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "hash": "09df4d21b134a6e7beb8ae12ace66d76", "type": "thn", "bulletinFamily": "info", "title": "Apple Issues Urgent Updates to Fix New Zero-Day Linked to Pegasus Spyware", "description": "[](<https://thehackernews.com/images/-xrJNXUUrPpA/YUAmXL5uYDI/AAAAAAAADyk/KnzZD6V6H1YU07j0N5PjRNos-MQJgKVnwCLcBGAsYHQ/s0/apple-update.jpg>)\n\nApple has released [iOS 14.8, iPadOS 14.8](<https://support.apple.com/en-us/HT212807>), [watchOS 7.6.2](<https://support.apple.com/en-us/HT212806>), [macOS Big Sur 11.6](<https://support.apple.com/en-us/HT212804>), and [Safari 14.1.2](<https://support.apple.com/en-us/HT212808>) to fix two actively exploited vulnerabilities, one of which defeated extra security protections built into the operating system.\n\nThe list of two flaws is as follows -\n\n * **CVE-2021-30858** (WebKit) - A use after free issue that could result in arbitrary code execution when processing maliciously crafted web content. The flaw has been addressed with improved memory management.\n * **CVE-2021-30860** (CoreGraphics) - An integer overflow vulnerability that could lead to arbitrary code execution when processing a maliciously crafted PDF document. The bug has been remediated with improved input validation.\n\n\"Apple is aware of a report that this issue may have been actively exploited,\" the iPhone maker noted in its advisory.\n\nThe updates arrive weeks after researchers from the University of Toronto's Citizen Lab revealed details of a zero-day exploit called \"[FORCEDENTRY](<https://thehackernews.com/2021/08/bahraini-activists-targeted-using-new.html>)\" (aka Megalodon) that was weaponized by Israeli surveillance vendor NSO Group and allegedly put to use by the government of Bahrain to install Pegasus spyware on the phones of nine activists in the country since February this year.\n\nBesides being triggered simply by sending a malicious message to the target, FORCEDENTRY is also notable for the fact that it expressly undermines a new software security feature called [BlastDoor](<https://thehackernews.com/2021/01/google-uncovers-new-ios-security.html>) that Apple baked into iOS 14 to prevent zero-click intrusions by filtering untrusted data sent over iMessage.\n\n\"Our latest discovery of yet another Apple zero day employed as part of NSO Group's arsenal further illustrates that companies like NSO Group are facilitating 'despotism-as-a-service' for unaccountable government security agencies,\" Citizen Lab researchers [said](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>).\n\n\"Ubiquitous chat apps have become a major target for the most sophisticated threat actors, including nation state espionage operations and the mercenary spyware companies that service them. As presently engineered, many chat apps have become an irresistible soft target,\" they added.\n\nCVE-2021-30858 is the latest in a number of WebKit zero-day flaws Apple has rectified this year alone. With this set of latest updates, the company has patched a total of [15 zero-day vulnerabilities](<https://thehackernews.com/2021/07/apple-releases-urgent-0-day-bug-patch.html>) since the start of 2021.\n\nApple iPhone, iPad, Mac, and Apple Watch users are advised to immediately update their software to mitigate any potential threats arising out of active exploitation of the flaws.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-14T04:35:00", "modified": "2021-09-14T04:35:29", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-14T04:36:18", "history": [], "viewCount": 6, "enchantments": {}, "objectVersion": "1.6"}, "lastseen": "2021-09-14T04:36:18", "differentElements": ["description", "modified"], "edition": 1}], "viewCount": 43, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212805.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-14T06:39:04", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-14T06:39:04", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.thn.ThnBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.thn.ThnBulletin"]}, {"id": "THN:2741F0E9DD9F764C60701C9C81F231C5", "hash": "9e7ac67f30f9acdca1f721dd10f46892", "type": "thn", "bulletinFamily": "info", "title": "Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days", "description": "[ ](<https://thehackernews.com/images/-5dTHnEs3qjc/YU1EKDZsIKI/AAAAAAAAD4o/SztREgil99ENgTumohbms1jhEOBVjMiwACLcBGAsYHQ/s0/apple-software-update.jpg>)\n\nApple on Thursday released security updates to fix multiple security vulnerabilities in older versions of [iOS](<https://support.apple.com/en-us/HT212824>) and [macOS](<https://support.apple.com/en-us/HT212825>) that it says have been detected in exploits in the wild, in addition to expanding patches for a previously plugged security weakness abused by NSO Group's Pegasus surveillance tool to target iPhone users.\n\nChief among them is CVE-2021-30869, a type confusion flaw that resides in the kernel component [XNU](<https://en.wikipedia.org/wiki/XNU>) developed by Apple that could cause a malicious application to execute arbitrary code with the highest privileges. The Cupertino-based tech giant said it addressed the bug with improved state handling.\n\nGoogle's Threat Analysis Group, which is credited with reporting the flaw, [said](<https://twitter.com/ShaneHuntley/status/1441102086385455112>) it detected the vulnerability being \"used in conjunction with a N-day remote code execution targeting WebKit.\"\n\nTwo other flaws include [CVE-2021-30858 and CVE-2021-30860](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>), both of which were resolved by the company earlier this month following disclosure from the University of Toronto's Citizen Lab about a previously unknown exploit called \"FORCEDENTRY\" (aka Megalodon) that could infect Apple devices without so much as a click.\n\nThe zero-click remote attack weaponizing CVE-2021-30860 is said to have been carried out by a customer of the controversial Israeli company NSO Group since at least February 2021. The scale and scope of the operation remains unclear as yet.\n\nIt relied on iMessage as an entry point to send malicious code that stealthily installed the Pegasus spyware on the devices and exfiltrate sensitive data without tipping the victims off. The exploit is also significant for its ability to get around defenses built by Apple in iOS 14 \u2014 called BlastDoor \u2014 to prevent such intrusions by filtering untrusted data sent over the texting application.\n\n[](<https://hubs.la/H0XCGx40> \"Prevent Data Breaches\" )\n\nThe patches are available for devices running macOS Catalina and iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation) running iOS 12.5.4. \n\nThe development also comes as security researchers have disclosed unpatched zero-day flaws in iOS, including a [lock screen bypass bug](<https://therecord.media/researcher-discloses-iphone-lock-screen-bypass-on-ios-15-launch-day/>) and a clutch of vulnerabilities that could be abused by an app to gain access to users' Apple ID email addresses and full names, check if a specific app is installed on the device given its bundle ID, and even retrieve Wi-Fi information without proper authorization.\n\nResearcher Denis Tokarev (aka illusionofchaos), who disclosed the latter three issues, [said](<https://habr.com/en/post/579714/>) they were reported to Apple between March 10 and May 4, claiming what was \"a frustrating experience participating in Apple Security Bounty program\" for its failure to fix the issues despite having them responsibly disclosed \"up to half a year\" ago.\n\nIndeed, a Washington Post article published two weeks ago [revealed](<https://www.washingtonpost.com/technology/2021/09/09/apple-bug-bounty/>) how the company sits on a \"massive backlog\" of vulnerability reports, leaving them unresolved for months, hands out lower monetary payouts to bug hunters, and, in some cases, outright bans researchers from its Developer Program for filing reports.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-24T03:39:00", "modified": "2021-09-27T04:38:55", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/urgent-apple-ios-and-macos-updates.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-27T06:42:49", "history": [{"bulletin": {"id": "THN:2741F0E9DD9F764C60701C9C81F231C5", "hash": "c769177c9a16051450e7241dfeac7db5", "type": "thn", "bulletinFamily": "info", "title": "Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days", "description": "[](<https://thehackernews.com/images/-5dTHnEs3qjc/YU1EKDZsIKI/AAAAAAAAD4o/SztREgil99ENgTumohbms1jhEOBVjMiwACLcBGAsYHQ/s0/apple-software-update.jpg>)\n\nApple on Thursday released security updates to fix multiple security vulnerabilities in older versions of [iOS](<https://support.apple.com/en-us/HT212824>) and [macOS](<https://support.apple.com/en-us/HT212825>) that it says have been detected in exploits in the wild, in addition to expanding patches for a previously plugged security weakness abused by NSO Group's Pegasus surveillance tool to target iPhone users.\n\nChief among them is CVE-2021-30869, a type confusion flaw that resides in the kernel component [XNU](<https://en.wikipedia.org/wiki/XNU>) developed by Apple that could cause a malicious application to execute arbitrary code with the highest privileges. The Cupertino-based tech giant said it addressed the bug with improved state handling.\n\nGoogle's Threat Analysis Group, which is credited with reporting the flaw, [said](<https://twitter.com/ShaneHuntley/status/1441102086385455112>) it detected the vulnerability being \"used in conjunction with a N-day remote code execution targeting WebKit.\"\n\nTwo other flaws include [CVE-2021-30858 and CVE-2021-30860](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>), both of which were resolved by the company earlier this month following disclosure from the University of Toronto's Citizen Lab about a previously unknown exploit called \"FORCEDENTRY\" (aka Megalodon) that could infect Apple devices without so much as a click.\n\nThe zero-click remote attack weaponizing CVE-2021-30860 is said to have been carried out by a customer of the controversial Israeli company NSO Group since at least February 2021. The scale and scope of the operation remain unclear as yet.\n\nIt relied on iMessage as an entry point to send malicious code that stealthily installed the Pegasus spyware on the devices and exfiltrate sensitive data without tipping the victims off. The exploit is also significant for its ability to get around defenses built by Apple in iOS 14 \u2014 called BlastDoor \u2014 to prevent such intrusions by filtering untrusted data sent over the texting application.\n\n[](<https://hubs.la/H0XCGyv0> \"Prevent Data Breaches\" )\n\nThe patches are available for devices running macOS Catalina and iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation) running iOS 12.5.4. \n\nThe development also comes as security researchers have disclosed unpatched zero-day flaws in iOS, including a [lock screen bypass bug](<https://therecord.media/researcher-discloses-iphone-lock-screen-bypass-on-ios-15-launch-day/>) and a clutch of vulnerabilities that could be abused by an app to gain access to users' Apple ID email addresses and full names, check if a specific app is installed on the device given its bundle ID, and even retrieve Wi-Fi information without proper authorization.\n\nResearcher illusionofchaos, who [disclosed](<https://habr.com/en/post/579714/>) the latter three issues, said they were reported to Apple between March 10 and May 4. Indeed, a Washington Post article published two weeks ago [revealed](<https://www.washingtonpost.com/technology/2021/09/09/apple-bug-bounty/>) how the company sits on a \"massive backlog\" of vulnerability reports, leaving them unresolved for months, hands out lower monetary payouts to bug hunters, and, in some cases, outright bans researchers from its Developer Program for filing reports.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-24T03:39:00", "modified": "2021-09-24T03:48:44", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/urgent-apple-ios-and-macos-updates.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-24T04:41:46", "history": [], "viewCount": 19, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30860", "CVE-2021-30858", "CVE-2021-30869"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "MACOS_HT212804.NASL", "DEBIAN_DSA-4976.NASL", "MACOS_HT212805.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-24T04:41:46", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-09-24T04:41:46", "rev": 2}}, "objectVersion": "1.6"}, "lastseen": "2021-09-24T04:41:46", "differentElements": ["description", "modified"], "edition": 1}, {"bulletin": {"id": "THN:2741F0E9DD9F764C60701C9C81F231C5", "hash": "0c4a40cabe67b03da8bdade098dbbec0", "type": "thn", "bulletinFamily": "info", "title": "Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days", "description": "[](<https://thehackernews.com/images/-5dTHnEs3qjc/YU1EKDZsIKI/AAAAAAAAD4o/SztREgil99ENgTumohbms1jhEOBVjMiwACLcBGAsYHQ/s0/apple-software-update.jpg>)\n\nApple on Thursday released security updates to fix multiple security vulnerabilities in older versions of [iOS](<https://support.apple.com/en-us/HT212824>) and [macOS](<https://support.apple.com/en-us/HT212825>) that it says have been detected in exploits in the wild, in addition to expanding patches for a previously plugged security weakness abused by NSO Group's Pegasus surveillance tool to target iPhone users.\n\nChief among them is CVE-2021-30869, a type confusion flaw that resides in the kernel component [XNU](<https://en.wikipedia.org/wiki/XNU>) developed by Apple that could cause a malicious application to execute arbitrary code with the highest privileges. The Cupertino-based tech giant said it addressed the bug with improved state handling.\n\nGoogle's Threat Analysis Group, which is credited with reporting the flaw, [said](<https://twitter.com/ShaneHuntley/status/1441102086385455112>) it detected the vulnerability being \"used in conjunction with a N-day remote code execution targeting WebKit.\"\n\nTwo other flaws include [CVE-2021-30858 and CVE-2021-30860](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>), both of which were resolved by the company earlier this month following disclosure from the University of Toronto's Citizen Lab about a previously unknown exploit called \"FORCEDENTRY\" (aka Megalodon) that could infect Apple devices without so much as a click.\n\nThe zero-click remote attack weaponizing CVE-2021-30860 is said to have been carried out by a customer of the controversial Israeli company NSO Group since at least February 2021. The scale and scope of the operation remain unclear as yet.\n\nIt relied on iMessage as an entry point to send malicious code that stealthily installed the Pegasus spyware on the devices and exfiltrate sensitive data without tipping the victims off. The exploit is also significant for its ability to get around defenses built by Apple in iOS 14 \u2014 called BlastDoor \u2014 to prevent such intrusions by filtering untrusted data sent over the texting application.\n\n[](<https://hubs.la/H0XCGyv0> \"Prevent Data Breaches\" )\n\nThe patches are available for devices running macOS Catalina and iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation) running iOS 12.5.4. \n\nThe development also comes as security researchers have disclosed unpatched zero-day flaws in iOS, including a [lock screen bypass bug](<https://therecord.media/researcher-discloses-iphone-lock-screen-bypass-on-ios-15-launch-day/>) and a clutch of vulnerabilities that could be abused by an app to gain access to users' Apple ID email addresses and full names, check if a specific app is installed on the device given its bundle ID, and even retrieve Wi-Fi information without proper authorization.\n\nResearcher Denis Tokarev (aka illusionofchaos), who disclosed the latter three issues, [said](<https://habr.com/en/post/579714/>) they were reported to Apple between March 10 and May 4, claiming what was \"a frustrating experience participating in Apple Security Bounty program\" for its failure to fix the issues despite having them responsibly disclosed \"up to half a year\" ago.\n\nIndeed, a Washington Post article published two weeks ago [revealed](<https://www.washingtonpost.com/technology/2021/09/09/apple-bug-bounty/>) how the company sits on a \"massive backlog\" of vulnerability reports, leaving them unresolved for months, hands out lower monetary payouts to bug hunters, and, in some cases, outright bans researchers from its Developer Program for filing reports.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-24T03:39:00", "modified": "2021-09-25T04:58:32", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/urgent-apple-ios-and-macos-updates.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-25T06:52:28", "history": [], "viewCount": 25, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:6A9CD6F085628D08978727C0FF597535", "THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-25T06:52:28", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-09-25T06:52:28", "rev": 2}}, "objectVersion": "1.6"}, "lastseen": "2021-09-25T06:52:28", "differentElements": ["description", "modified"], "edition": 2}], "viewCount": 31, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771"]}, {"type": "cve", "idList": ["CVE-2021-30869", "CVE-2021-30858", "CVE-2021-30860"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212805.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:6A9CD6F085628D08978727C0FF597535", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-27T06:42:49", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-09-27T06:42:49", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.thn.ThnBulletin", "_object_types": ["robots.models.thn.ThnBulletin", "robots.models.base.Bulletin"]}, {"id": "THN:3691EA68445933ED72DD1B52F712F791", "hash": "e81841fb7b08c375482df1e3acb0fe32", "type": "thn", "bulletinFamily": "info", "title": "3 Former U.S. Intelligence Officers Admit to Hacking for UAE Company", "description": "[](<https://thehackernews.com/images/-wXU6Ao112oQ/YUHS9ZYKUgI/AAAAAAAADzM/8Ffb9-BFlCk8zVYCFLRjdkMHIGmvJhshACLcBGAsYHQ/s0/HACKING.jpg>)\n\nThe U.S. Department of Justice (DoJ) on Tuesday disclosed it fined three intelligence community and military personnel $1.68 million in penalties for their role as cyber-mercenaries working on behalf of a U.A.E.-based cybersecurity company.\n\nThe trio in question \u2014 Marc Baier, 49, Ryan Adams, 34, and Daniel Gericke, 40 \u2014 are accused of \"knowingly and willfully combine, conspire, confederate, and agree with each other to commit offenses, \"furnishing defense services to persons and entities in the country over a three year period beginning around December 2015 and continuing through November 2019, including developing invasive spyware capable of breaking into mobile devices without any action by the targets.\n\n\"The defendants worked as senior managers at a United Arab Emirates (U.A.E.)-based company (U.A.E. CO) that supported and carried out computer network exploitation (CNE) operations (i.e., 'hacking') for the benefit of the U.A.E. government,\" the DoJ [said](<https://www.justice.gov/opa/pr/three-former-us-intelligence-community-and-military-personnel-agree-pay-more-168-million>) in a statement.\n\n\"Despite being informed on several occasions that their work for [the] U.A.E. CO, under the International Traffic in Arms Regulations (ITAR), constituted a 'defense service' requiring a license from the State Department's Directorate of Defense Trade Controls (DDTC), the defendants proceeded to provide such services without a license.\"\n\nBesides charging the individuals for violations of U.S. export control, computer fraud and access device fraud laws, the hackers-for-hire are alleged to have supervised the creation of sophisticated 'zero-click' exploits that were subsequently weaponized to illegally amass credentials for online accounts issued by U.S. companies, and to obtain unauthorized access to mobile phones around the world.\n\nThe development follows a prior investigation by Reuters in 2019, which revealed how former U.S. National Security Agency (NSA) operatives helped the U.A.E. surveil prominent Arab media figures, dissidents, and several unnamed U.S. journalists as part of a clandestine operation dubbed [Project Raven](<https://www.reuters.com/investigates/section/usa-raven/>) undertaken by a cybersecurity company named **DarkMatter**. The company's propensity to recruit \"[cyberwarriors from abroad](<https://theintercept.com/2016/10/24/darkmatter-united-arab-emirates-spies-for-hire/>)\" to research offensive security techniques first came to light in 2016.\n\nThe deep-dive report also detailed a zero-click exploit called Karma that made it possible to remotely hack into iPhones of activists, diplomats and rival foreign leaders \"simply by uploading phone numbers or email accounts into an automated targeting system.\" The sophisticated tool was used to retrieve photos, emails, text messages and location information from the victims' phones as well as harvest saved passwords, which could be abused to stage further intrusions.\n\nAccording to unsealed court documents, Baier, Adams and Gericke designed, implemented, and used Karma for foreign intelligence gathering purposes starting in May 2016 after obtaining an exploit from an unnamed U.S. company that granted zero-click remote access to Apple devices. But after the underlying security weakness was plugged in September, the defendants allegedly contacted another U.S. firm to acquire a second exploit that utilized a different vulnerability in iOS, ultimately using it to rearchitect and modify the Karma exploitation toolkit.\n\nThe charges also arrive a day after Apple [divulged](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) that it acted to close a zero-day vulnerability (CVE-2021-30860) exploited by NSO Group's Pegasus spyware to target activists in Bahrain and Saudi Arabia.\n\n\"The FBI will fully investigate individuals and companies that profit from illegal criminal cyber activity,\" said Assistant Director Bryan Vorndran of the FBI's Cyber Division. \"This is a clear message to anybody, including former U.S. government employees, who had considered using cyberspace to leverage export-controlled information for the benefit of a foreign government or a foreign commercial company \u2013 there is risk, and there will be consequences.\"\n\n**_Update:_** A new report from MIT Technology Review has now revealed that the vulnerability that the KARMA platform leveraged to take full control of a target's iPhone was in Apple's iMessage app and that the exploit was developed and sold by an American company named Accuvant, which has since merged with Optiv.\n\n\"Accuvant sold hacking exploits to multiple customers in both governments and the private sector, including the United States and its allies \u2014 and this exact iMessage exploit was also sold simultaneously to multiple other customers,\" the report [said](<https://www.technologyreview.com/2021/09/15/1035813/us-sold-iphone-exploit-uae/>).\n\nIn a separate development, VPN provider ExpressVPN said it was aware of Daniel Gericke's previous employment before hiring him. Gericke, who is currently the Chief Information Officer at the company, is one the three individuals who have been implicated for their unlicensed work as mercenary hackers directing U.A.E.-funded intrusion campaigns.\n\n\"We've known the key facts relating to Daniel's employment history since before we hired him, as he disclosed them proactively and transparently with us from the start,\" the company [said](<https://www.expressvpn.com/blog/statement-on-dpa/>) in a statement. \"In fact, it was his history and expertise that made him an invaluable hire for our mission to protect users' privacy and security.\"\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-15T11:03:00", "modified": "2021-09-16T05:03:29", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/3-former-us-intelligence-officers-admit.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-16T06:39:05", "history": [{"bulletin": {"id": "THN:3691EA68445933ED72DD1B52F712F791", "hash": "265386dc0f0547e4458b558e18e5d5c7", "type": "thn", "bulletinFamily": "info", "title": "3 Former U.S. Intelligence Officers Admit to Hacking for UAE Company", "description": "[](<https://thehackernews.com/images/-wXU6Ao112oQ/YUHS9ZYKUgI/AAAAAAAADzM/8Ffb9-BFlCk8zVYCFLRjdkMHIGmvJhshACLcBGAsYHQ/s0/HACKING.jpg>)\n\nThe U.S. Department of Justice (DoJ) on Tuesday disclosed it fined three intelligence community and military personnel $1.68 million in penalties for their role as cyber-mercenaries working on behalf of a U.A.E.-based cybersecurity company.\n\nThe trio in question \u2014 Marc Baier, 49, Ryan Adams, 34, and Daniel Gericke, 40 \u2014 are accused of \"knowingly and willfully combine, conspire, confederate, and agree with each other to commit offenses, \"furnishing defense services to persons and entities in the country over a three year period beginning around December 2015 and continuing through November 2019, including developing invasive spyware capable of breaking into mobile devices without any action by the targets.\n\n\"The defendants worked as senior managers at a United Arab Emirates (U.A.E.)-based company (U.A.E. CO) that supported and carried out computer network exploitation (CNE) operations (i.e., 'hacking') for the benefit of the U.A.E. government,\" the DoJ [said](<https://www.justice.gov/opa/pr/three-former-us-intelligence-community-and-military-personnel-agree-pay-more-168-million>) in a statement.\n\n\"Despite being informed on several occasions that their work for [the] U.A.E. CO, under the International Traffic in Arms Regulations (ITAR), constituted a 'defense service' requiring a license from the State Department's Directorate of Defense Trade Controls (DDTC), the defendants proceeded to provide such services without a license.\"\n\nBesides charging the individuals for violations of U.S. export control, computer fraud and access device fraud laws, the hackers-for-hire are alleged to have supervised the creation of sophisticated 'zero-click' exploits that were subsequently weaponized to illegally amass credentials for online accounts issued by U.S. companies, and to obtain unauthorized access to mobile phones around the world.\n\nThe development follows a prior investigation by Reuters in 2019, which revealed how former U.S. National Security Agency (NSA) operatives helped the U.A.E. surveil prominent Arab media figures, dissidents, and several unnamed U.S. journalists as part of a clandestine operation dubbed [Project Raven](<https://www.reuters.com/investigates/section/usa-raven/>) undertaken by a cybersecurity company named **DarkMatter**. The company's propensity to recruit \"[cyberwarriors from abroad](<https://theintercept.com/2016/10/24/darkmatter-united-arab-emirates-spies-for-hire/>)\" to research offensive security techniques first came to light in 2016.\n\nThe deep-dive report also detailed a zero-click exploit called Karma that made it possible to remotely hack into iPhones of activists, diplomats and rival foreign leaders \"simply by uploading phone numbers or email accounts into an automated targeting system.\" The sophisticated tool was used to retrieve photos, emails, text messages and location information from the victims' phones as well as harvest saved passwords, which could be abused to stage further intrusions.\n\nAccording to unsealed court documents, Baier, Adams and Gericke designed, implemented, and used Karma for foreign intelligence gathering purposes starting in May 2016 after obtaining an exploit from an unnamed U.S. company that granted zero-click remote access to Apple devices.\n\nBut after the underlying security weakness was plugged in September, the defendants allegedly contacted another U.S. firm to acquire a second exploit that utilized a different vulnerability in iOS, ultimately using it to rearchitect and modify the Karma exploitation toolkit.\n\nThe charges also arrive a day after Apple [divulged](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) that it acted to close a zero-day vulnerability (CVE-2021-30860) exploited by NSO Group's Pegasus spyware to target activists in Bahrain and Saudi Arabia.\n\n\"The FBI will fully investigate individuals and companies that profit from illegal criminal cyber activity,\" said Assistant Director Bryan Vorndran of the FBI's Cyber Division. \"This is a clear message to anybody, including former U.S. government employees, who had considered using cyberspace to leverage export-controlled information for the benefit of a foreign government or a foreign commercial company \u2013 there is risk, and there will be consequences.\"\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-09-15T11:03:00", "modified": "2021-09-15T11:03:55", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://thehackernews.com/2021/09/3-former-us-intelligence-officers-admit.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-15T12:36:50", "history": [], "viewCount": 5, "enchantments": {}, "objectVersion": "1.6"}, "lastseen": "2021-09-15T12:36:50", "differentElements": ["description", "modified"], "edition": 1}], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30860"]}, {"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-16T06:39:05", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-09-16T06:39:05", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.thn.ThnBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.thn.ThnBulletin"]}, {"id": "THN:BB8CDCFD08801BDD2929E342853D03E9", "hash": "2d424f45e318aff7e8b95daaad0805fd", "type": "thn", "bulletinFamily": "info", "title": "Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability", "description": "[](<https://thehackernews.com/new-images/img/a/AVvXsEj9Bd2VdAXWvbASf8YmWxr5iArtahL17_NleXHz62PXrscVcuyhLoDB7s3THH7T3H2cNZseMCfhLHRI9u5ESRDFZknnkYq6qqLc5c9bPFMM7KFlt0MGfj_ufHze0jtqtN8jGQiQUtNiSL3Kgq8Vsdc1lkrooiJsHq3ucrJQr03nO_OVN3I2C0POzJAs>)\n\nApple on Monday released a security update for iOS and iPad to address a critical vulnerability that it says is being exploited in the wild, making it the 17th zero-day flaw the company has addressed in its products since the start of the year.\n\nThe weakness, assigned the identifier [CVE-2021-30883](<https://support.apple.com/en-us/HT212846>), concerns a memory corruption issue in the \"IOMobileFrameBuffer\" component that could allow an application to execute arbitrary code with kernel privileges. Crediting an anonymous researcher for reporting the vulnerability, Apple said it's \"aware of a report that this issue may have been actively exploited.\"\n\nTechnical specifics about the flaw and the nature of the attacks remain unavailable as yet, as is the identity of the threat actor, so as to allow a majority of the users to apply the patch and prevent other adversaries from weaponizing the vulnerability. The iPhone maker said it addressed the issue with improved memory handling.\n\n[](<https://go.thn.li/rewind-1> \"Automatic GitHub Backups\" )\n\nBut soon after the advisory was released, security researcher Saar Amar [shared](<https://saaramar.github.io/IOMFB_integer_overflow_poc/>) additional details, and a proof-of-concept (PoC) exploit, noting that \"this attack surface is highly interesting because it's accessible from the app sandbox (so it's great for jailbreaks) and many other processes, making it a good candidate for LPEs exploits in chains.\"\n\nCVE-2021-30883 is also the second zero-day impacting IOMobileFrameBuffer after Apple addressed a similar, anonymously reported memory corruption issue (CVE-2021-30807) in July 2021, raising the possibility that the two flaws could be related. With the latest fix, the company has resolved a record 17 zero-days to date in 2021 alone \u2014\n\n * [**CVE-2021-1782**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (Kernel) - A malicious application may be able to elevate privileges\n * [**CVE-2021-1870**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (WebKit) - A remote attacker may be able to cause arbitrary code execution\n * [**CVE-2021-1871**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (WebKit) - A remote attacker may be able to cause arbitrary code execution\n * [**CVE-2021-1879**](<https://thehackernews.com/2021/03/apple-issues-urgent-patch-update-for.html>) (WebKit) - Processing maliciously crafted web content may lead to universal cross-site scripting\n * [**CVE-2021-30657**](<https://thehackernews.com/2021/04/hackers-exploit-0-day-gatekeeper-flaw.html>) (System Preferences) - A malicious application may bypass Gatekeeper checks\n * [**CVE-2021-30661**](<https://thehackernews.com/2021/04/hackers-exploit-0-day-gatekeeper-flaw.html>) (WebKit Storage) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30663**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30665**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30666**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30713**](<https://thehackernews.com/2021/05/apple-issues-patches-to-combat-ongoing.html>) (TCC framework) - A malicious application may be able to bypass Privacy preferences\n\n[](<https://hubs.la/H0Z4F9p0> \"Prevent Data Breaches\" )\n\n * [**CVE-2021-30761**](<https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30762**](<https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30807**](<https://thehackernews.com/2021/07/apple-releases-urgent-0-day-bug-patch.html>) (IOMobileFrameBuffer) - An application may be able to execute arbitrary code with kernel privileges\n * [**CVE-2021-30858**](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30860**](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) (CoreGraphics) - Processing a maliciously crafted PDF may lead to arbitrary code execution\n * [**CVE-2021-30869**](<https://thehackernews.com/2021/09/urgent-apple-ios-and-macos-updates.html>) (XNU) - A malicious application may be able to execute arbitrary code with kernel privileges\n\nApple iPhone and iPad users are highly recommended to update to the latest version (iOS 15.0.2 and iPad 15.0.2) to mitigate the security vulnerability.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-10-12T02:41:00", "modified": "2021-10-20T05:21:18", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://thehackernews.com/2021/10/apple-releases-urgent-iphone-and-ipad.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-1782", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-1879", "CVE-2021-30657", "CVE-2021-30661", "CVE-2021-30663", "CVE-2021-30665", "CVE-2021-30666", "CVE-2021-30713", "CVE-2021-30761", "CVE-2021-30762", "CVE-2021-30807", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869", "CVE-2021-30883"], "immutableFields": [], "lastseen": "2021-10-20T06:36:47", "history": [{"bulletin": {"id": "THN:BB8CDCFD08801BDD2929E342853D03E9", "hash": "f4837fd9d5c61bbee229446e15b48905", "type": "thn", "bulletinFamily": "info", "title": "Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability", "description": "[](<https://thehackernews.com/new-images/img/a/AVvXsEj9Bd2VdAXWvbASf8YmWxr5iArtahL17_NleXHz62PXrscVcuyhLoDB7s3THH7T3H2cNZseMCfhLHRI9u5ESRDFZknnkYq6qqLc5c9bPFMM7KFlt0MGfj_ufHze0jtqtN8jGQiQUtNiSL3Kgq8Vsdc1lkrooiJsHq3ucrJQr03nO_OVN3I2C0POzJAs>)\n\nApple on Monday released a security update for iOS and iPad to address a critical vulnerability that it says is being exploited in the wild, making it the 17th zero-day flaw the company has addressed in its products since the start of the year.'\n\nThe weakness, assigned the identifier [CVE-2021-30883](<https://support.apple.com/en-us/HT212846>), concerns a memory corruption issue in the \"IOMobileFrameBuffer\" component that could allow an application to execute arbitrary code with kernel privileges. Crediting an anonymous researcher for reporting the vulnerability, Apple said it's \"aware of a report that this issue may have been actively exploited.\"\n\nTechnical specifics about the flaw and the nature of the attacks remain unavailable as yet, as is the identity of the threat actor, so as to allow a majority of the users to apply the patch and prevent other adversaries from weaponizing the vulnerability. The iPhone maker said it addressed the issue with improved memory handling.\n\n[](<https://go.thn.li/rewind-1> \"Automatic GitHub Backups\" )\n\nSecurity researcher Saar Amar [shared](<https://saaramar.github.io/IOMFB_integer_overflow_poc/>) additional details, and a proof-of-concept (PoC) exploit, noting that \"this attack surface is highly interesting because it's accessible from the app sandbox (so it's great for jailbreaks) and many other processes, making it a good candidate for LPEs exploits in chains.\"\n\nCVE-2021-30883 is also the second zero-day impacting IOMobileFrameBuffer after Apple addressed a similar, anonymously reported memory corruption issue (CVE-2021-30807) in July 2021, raising the possibility that the two flaws could be related. With the latest fix, the company has resolved a record 17 zero-days to date in 2021 alone \u2014\n\n * [**CVE-2021-1782**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (Kernel) - A malicious application may be able to elevate privileges\n * [**CVE-2021-1870**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (WebKit) - A remote attacker may be able to cause arbitrary code execution\n * [**CVE-2021-1871**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (WebKit) - A remote attacker may be able to cause arbitrary code execution\n * [**CVE-2021-1879**](<https://thehackernews.com/2021/03/apple-issues-urgent-patch-update-for.html>) (WebKit) - Processing maliciously crafted web content may lead to universal cross-site scripting\n * [**CVE-2021-30657**](<https://thehackernews.com/2021/04/hackers-exploit-0-day-gatekeeper-flaw.html>) (System Preferences) - A malicious application may bypass Gatekeeper checks\n * [**CVE-2021-30661**](<https://thehackernews.com/2021/04/hackers-exploit-0-day-gatekeeper-flaw.html>) (WebKit Storage) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30663**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30665**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30666**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30713**](<https://thehackernews.com/2021/05/apple-issues-patches-to-combat-ongoing.html>) (TCC framework) - A malicious application may be able to bypass Privacy preferences\n * [**CVE-2021-30761**](<https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30762**](<https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30807**](<https://thehackernews.com/2021/07/apple-releases-urgent-0-day-bug-patch.html>) (IOMobileFrameBuffer) - An application may be able to execute arbitrary code with kernel privileges\n * [**CVE-2021-30858**](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30860**](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) (CoreGraphics) - Processing a maliciously crafted PDF may lead to arbitrary code execution\n * [**CVE-2021-30869**](<https://thehackernews.com/2021/09/urgent-apple-ios-and-macos-updates.html>) (XNU) - A malicious application may be able to execute arbitrary code with kernel privileges\n\nApple iPhone and iPad users are highly recommended to update to the latest version (iOS 15.0.2 and iPad 15.0.2) to mitigate the security vulnerability.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-10-12T02:41:00", "modified": "2021-10-12T02:41:34", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://thehackernews.com/2021/10/apple-releases-urgent-iphone-and-ipad.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-1782", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-1879", "CVE-2021-30657", "CVE-2021-30661", "CVE-2021-30663", "CVE-2021-30665", "CVE-2021-30666", "CVE-2021-30713", "CVE-2021-30761", "CVE-2021-30762", "CVE-2021-30807", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869", "CVE-2021-30883"], "immutableFields": [], "lastseen": "2021-10-12T04:36:08", "history": [], "viewCount": 11, "enchantments": {}, "objectVersion": "1.6"}, "lastseen": "2021-10-12T04:36:08", "differentElements": ["description", "modified"], "edition": 1}, {"bulletin": {"id": "THN:BB8CDCFD08801BDD2929E342853D03E9", "hash": "405560a74a1e694046ecdc20dcf3054d", "type": "thn", "bulletinFamily": "info", "title": "Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability", "description": "[](<https://thehackernews.com/new-images/img/a/AVvXsEj9Bd2VdAXWvbASf8YmWxr5iArtahL17_NleXHz62PXrscVcuyhLoDB7s3THH7T3H2cNZseMCfhLHRI9u5ESRDFZknnkYq6qqLc5c9bPFMM7KFlt0MGfj_ufHze0jtqtN8jGQiQUtNiSL3Kgq8Vsdc1lkrooiJsHq3ucrJQr03nO_OVN3I2C0POzJAs>)\n\nApple on Monday released a security update for iOS and iPad to address a critical vulnerability that it says is being exploited in the wild, making it the 17th zero-day flaw the company has addressed in its products since the start of the year.'\n\nThe weakness, assigned the identifier [CVE-2021-30883](<https://support.apple.com/en-us/HT212846>), concerns a memory corruption issue in the \"IOMobileFrameBuffer\" component that could allow an application to execute arbitrary code with kernel privileges. Crediting an anonymous researcher for reporting the vulnerability, Apple said it's \"aware of a report that this issue may have been actively exploited.\"\n\nTechnical specifics about the flaw and the nature of the attacks remain unavailable as yet, as is the identity of the threat actor, so as to allow a majority of the users to apply the patch and prevent other adversaries from weaponizing the vulnerability. The iPhone maker said it addressed the issue with improved memory handling.\n\n[](<https://go.thn.li/rewind-1> \"Automatic GitHub Backups\" )\n\nSecurity researcher Saar Amar [shared](<https://saaramar.github.io/IOMFB_integer_overflow_poc/>) additional details, and a proof-of-concept (PoC) exploit, noting that \"this attack surface is highly interesting because it's accessible from the app sandbox (so it's great for jailbreaks) and many other processes, making it a good candidate for LPEs exploits in chains.\"\n\nCVE-2021-30883 is also the second zero-day impacting IOMobileFrameBuffer after Apple addressed a similar, anonymously reported memory corruption issue (CVE-2021-30807) in July 2021, raising the possibility that the two flaws could be related. With the latest fix, the company has resolved a record 17 zero-days to date in 2021 alone \u2014\n\n * [**CVE-2021-1782**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (Kernel) - A malicious application may be able to elevate privileges\n * [**CVE-2021-1870**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (WebKit) - A remote attacker may be able to cause arbitrary code execution\n * [**CVE-2021-1871**](<https://thehackernews.com/2021/01/apple-warns-of-3-ios-zero-day-security.html>) (WebKit) - A remote attacker may be able to cause arbitrary code execution\n * [**CVE-2021-1879**](<https://thehackernews.com/2021/03/apple-issues-urgent-patch-update-for.html>) (WebKit) - Processing maliciously crafted web content may lead to universal cross-site scripting\n * [**CVE-2021-30657**](<https://thehackernews.com/2021/04/hackers-exploit-0-day-gatekeeper-flaw.html>) (System Preferences) - A malicious application may bypass Gatekeeper checks\n * [**CVE-2021-30661**](<https://thehackernews.com/2021/04/hackers-exploit-0-day-gatekeeper-flaw.html>) (WebKit Storage) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30663**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30665**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30666**](<https://thehackernews.com/2021/05/apple-releases-urgent-security-patches.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30713**](<https://thehackernews.com/2021/05/apple-issues-patches-to-combat-ongoing.html>) (TCC framework) - A malicious application may be able to bypass Privacy preferences\n\n[](<https://hubs.la/H0Z4Hwl0> \"Prevent Ransomware Attacks\" )\n\n * [**CVE-2021-30761**](<https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30762**](<https://thehackernews.com/2021/06/apple-issues-urgent-patches-for-2-zero.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30807**](<https://thehackernews.com/2021/07/apple-releases-urgent-0-day-bug-patch.html>) (IOMobileFrameBuffer) - An application may be able to execute arbitrary code with kernel privileges\n * [**CVE-2021-30858**](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) (WebKit) - Processing maliciously crafted web content may lead to arbitrary code execution\n * [**CVE-2021-30860**](<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>) (CoreGraphics) - Processing a maliciously crafted PDF may lead to arbitrary code execution\n * [**CVE-2021-30869**](<https://thehackernews.com/2021/09/urgent-apple-ios-and-macos-updates.html>) (XNU) - A malicious application may be able to execute arbitrary code with kernel privileges\n\nApple iPhone and iPad users are highly recommended to update to the latest version (iOS 15.0.2 and iPad 15.0.2) to mitigate the security vulnerability.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-10-12T02:41:00", "modified": "2021-10-12T15:19:19", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://thehackernews.com/2021/10/apple-releases-urgent-iphone-and-ipad.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-1782", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-1879", "CVE-2021-30657", "CVE-2021-30661", "CVE-2021-30663", "CVE-2021-30665", "CVE-2021-30666", "CVE-2021-30713", "CVE-2021-30761", "CVE-2021-30762", "CVE-2021-30807", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869", "CVE-2021-30883"], "immutableFields": [], "lastseen": "2021-10-12T16:36:23", "history": [], "viewCount": 12, "enchantments": {"dependencies": {"references": [{"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:D9516FC71F8DBF10DCC510845A7FBC9E", "MALWAREBYTES:F17E033D182A0D3753BC7398874F60EE", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:3251602ACD4E04F5F4C7F140878960E0", "THN:4EFE9C3A3A0DEB0019296A14C9EAC1FA", "THN:59DC40FBDFBEBE12E11B551510E4B2E6", "THN:739D9EFE8C7F1B29E2430DAC65CDEE52", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:F0D5DEDB6BEE875D30F098FB7A4E55A1", "THN:080F85D43290560CDED8F282EE277B00", "THN:0D13405795D42B516C33D8E56A44BA9D", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:9F22FC342DFAFC55521FD4F7CEC7C9A3", "THN:EC6D350524B71F2DAA2D6B7CADC88677", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404", "CISA:E1F65044D75ACB497440E12A5184D628"]}, {"type": "attackerkb", "idList": ["AKB:183D8BB0-8586-4082-B243-93481A8DD739", "AKB:13D7A136-347D-489A-908C-898F80E4B285", "AKB:61DB1B67-FFE2-4A84-8445-DD1303479F56", "AKB:623B1BA8-5058-447C-A596-8E19F76075E6", "AKB:673C0F46-250F-49D1-B228-00771E15172B", "AKB:29A92D92-7F52-42AF-809D-8666D33E0DF2", "AKB:D8802B97-577F-4D1B-BA3C-1D6D3EBB2FF2", "AKB:15A288E1-FB97-49D8-B8D3-66504415C107", "AKB:4324FF7F-3A87-4B49-8D0A-C475F54F194F", "AKB:1FAC9EAB-6C14-40A6-94CA-04062F93D773", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:FF274F38-9A0C-47ED-97B9-57C114AB1511", "AKB:B7E55568-7DDB-4883-8CA4-2D0B592F4D60", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771"]}, {"type": "threatpost", "idList": ["THREATPOST:233067E74345C95478CA096160DFCE43", "THREATPOST:7C630642BA0CC259B4DF61820DA05235", "THREATPOST:8372A3E62BAD4992E997A34240A7EB45", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:33E56DEB736406F9DD08C7533BF1812B", "THREATPOST:760D774FCA5FD00BE1174D5CB428884D", "THREATPOST:8BADC2EA82DF9B3B87A59B396C617C28", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1F4EC22B4239CE182669792125155781", "THREATPOST:4918B2D694EFC16538A8825D39D8FBD5"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_1253_CHECK.NBIN", "701363.PASL", "APPLE_IOS_1471_CHECK.NBIN", "MACOS_HT212622.NASL", "APPLE_IOS_1451_CHECK.NBIN", "MACOS_HT212825.NASL", "APPLE_IOS_1502_CHECK.NBIN", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "APPLE_IOS_1254_CHECK.NBIN"]}, {"type": "cve", "idList": ["CVE-2021-30666", "CVE-2021-30869", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-30858", "CVE-2021-30663", "CVE-2021-1879", "CVE-2021-1782", "CVE-2021-30661", "CVE-2021-30883", "CVE-2021-30762", "CVE-2021-30665", "CVE-2021-30860", "CVE-2021-30761", "CVE-2021-30713", "CVE-2021-30657"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-1871", "RH:CVE-2021-30762", "RH:CVE-2021-1870", "RH:CVE-2021-30663", "RH:CVE-2021-30761", "RH:CVE-2021-30666", "RH:CVE-2021-30661", "RH:CVE-2021-30858", "RH:CVE-2021-30665"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30761", "UB:CVE-2021-30762", "UB:CVE-2021-30858", "UB:CVE-2021-30661", "UB:CVE-2021-30663", "UB:CVE-2021-30666", "UB:CVE-2021-1871", "UB:CVE-2021-1870", "UB:CVE-2021-30665"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "kitploit", "idList": ["KITPLOIT:8409423888936671546"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:162504"]}, {"type": "zdt", "idList": ["1337DAY-ID-36216"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}], "modified": "2021-10-12T16:36:23", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-10-12T16:36:23", "rev": 2}}, "objectVersion": "1.6"}, "lastseen": "2021-10-12T16:36:23", "differentElements": ["description", "modified"], "edition": 2}], "viewCount": 13, "enchantments": {"dependencies": {"references": [{"type": "malwarebytes", "idList": ["MALWAREBYTES:D9516FC71F8DBF10DCC510845A7FBC9E", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:F17E033D182A0D3753BC7398874F60EE", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:59DC40FBDFBEBE12E11B551510E4B2E6", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:3251602ACD4E04F5F4C7F140878960E0", "THN:080F85D43290560CDED8F282EE277B00", "THN:9F22FC342DFAFC55521FD4F7CEC7C9A3", "THN:F0D5DEDB6BEE875D30F098FB7A4E55A1", "THN:4EFE9C3A3A0DEB0019296A14C9EAC1FA", "THN:EC6D350524B71F2DAA2D6B7CADC88677", "THN:739D9EFE8C7F1B29E2430DAC65CDEE52", "THN:0D13405795D42B516C33D8E56A44BA9D", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "cisa", "idList": ["CISA:E1F65044D75ACB497440E12A5184D628", "CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:183D8BB0-8586-4082-B243-93481A8DD739", "AKB:4324FF7F-3A87-4B49-8D0A-C475F54F194F", "AKB:FF274F38-9A0C-47ED-97B9-57C114AB1511", "AKB:1FAC9EAB-6C14-40A6-94CA-04062F93D773", "AKB:13D7A136-347D-489A-908C-898F80E4B285", "AKB:673C0F46-250F-49D1-B228-00771E15172B", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:4380F669-F62A-4ECB-9878-4CE783308630", "AKB:29A92D92-7F52-42AF-809D-8666D33E0DF2", "AKB:F8C5CED8-6CD4-4034-ADE0-2B754D84500D", "AKB:61DB1B67-FFE2-4A84-8445-DD1303479F56", "AKB:D8802B97-577F-4D1B-BA3C-1D6D3EBB2FF2", "AKB:15A288E1-FB97-49D8-B8D3-66504415C107", "AKB:B7E55568-7DDB-4883-8CA4-2D0B592F4D60", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:623B1BA8-5058-447C-A596-8E19F76075E6"]}, {"type": "threatpost", "idList": ["THREATPOST:33E56DEB736406F9DD08C7533BF1812B", "THREATPOST:760D774FCA5FD00BE1174D5CB428884D", "THREATPOST:1F4EC22B4239CE182669792125155781", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:8BADC2EA82DF9B3B87A59B396C617C28", "THREATPOST:7C630642BA0CC259B4DF61820DA05235", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:233067E74345C95478CA096160DFCE43", "THREATPOST:8372A3E62BAD4992E997A34240A7EB45", "THREATPOST:4918B2D694EFC16538A8825D39D8FBD5"]}, {"type": "nessus", "idList": ["APPLE_IOS_1451_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "APPLE_IOS_1253_CHECK.NBIN", "APPLE_IOS_1502_CHECK.NBIN", "MACOS_HT212825.NASL", "APPLE_IOS_1255_CHECK.NBIN", "MACOS_HT212622.NASL", "UBUNTU_USN-5087-1.NASL", "APPLE_IOS_1471_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "APPLE_IOS_1254_CHECK.NBIN"]}, {"type": "cve", "idList": ["CVE-2021-1879", "CVE-2021-30860", "CVE-2021-30858", "CVE-2021-30665", "CVE-2021-1782", "CVE-2021-30883", "CVE-2021-30661", "CVE-2021-30666", "CVE-2021-30762", "CVE-2021-30807", "CVE-2021-30663", "CVE-2021-1870", "CVE-2021-30869", "CVE-2021-30657", "CVE-2021-1871", "CVE-2021-30761", "CVE-2021-30713"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-1871", "RH:CVE-2021-30761", "RH:CVE-2021-30666", "RH:CVE-2021-1870", "RH:CVE-2021-30661", "RH:CVE-2021-30665", "RH:CVE-2021-30762", "RH:CVE-2021-30858", "RH:CVE-2021-30663"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30665", "UB:CVE-2021-1871", "UB:CVE-2021-30663", "UB:CVE-2021-30762", "UB:CVE-2021-30661", "UB:CVE-2021-1870", "UB:CVE-2021-30761", "UB:CVE-2021-30858", "UB:CVE-2021-30666"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "zdt", "idList": ["1337DAY-ID-36216"]}, {"type": "kitploit", "idList": ["KITPLOIT:8409423888936671546"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:162504"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}], "modified": "2021-10-20T06:36:47", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-10-20T06:36:47", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.thn.ThnBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.thn.ThnBulletin"]}], "qualysblog": [{"id": "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "hash": "bf6708d8cfadb09a1b098d0735821696", "type": "qualysblog", "bulletinFamily": "blog", "title": "Detect & Prioritize NSO Pegasus iPhone Spyware Vulnerabilities Using VMDR for Mobile Devices", "description": "Apple recently released iOS and iPadOS [14.8](<https://support.apple.com/en-us/HT212807>) as a security update that addresses 2 critical zero-day vulnerabilities, which are used to [deploy **NSO Pegasus iPhone spyware**](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>). Qualys recommends that security teams should immediately update all devices running iOS and iPadOS to the latest version. "_Apple is aware of a report that this issue may have been actively exploited_," the company said in [security advisories](<https://support.apple.com/en-us/HT212807>).\n\nThe vulnerabilities affect iOS, iPadOS, watchOS, and macOS components including Core Graphics, and WebKit. Apple has released a fourth time an immediate security update release (14.8) after the major minor security update release (14.7.1) to fix the critical vulnerability (CVE-2021-30860) that has been actively exploited. Successful exploitation of vulnerability allows an application may be able to execute arbitrary code with kernel privileges, and spyware like [Pegasus](<https://blog.qualys.com/vulnerabilities-threat-research/2021/07/23/protect-your-devices-from-pegasus-spyware-using-vmdr-for-mobile-devices-proactive-approach>) can be easily deployed on affect devices, and exploiting other vulnerabilities, it will get access to a device.\n\n### CoreGraphics Arbitrary Code Execution Vulnerability\n\nApple released a patch to fix arbitrary code execution critical vulnerability (CVE-2021-30860). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted PDF file. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)\n\n### WebKit Arbitrary Code Execution Vulnerability\n\nApple released a patch to fix arbitrary code execution critical vulnerability (CVE-2021-30858). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted web page. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)\n\n### Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices\n\n#### Discover Assets Missing the Latest Android Security Patch and Update\n\nThe first step in managing these critical vulnerabilities and reducing risk is to identify the assets. [Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) makes it easy to identify the iOS and iPadOS assets not updated to the latest version iOS 14.8. To get the comprehensive visibility of the mobile devices, you need to install [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for Android or iOS/iPadOS on all mobile devices. The device onboarding process is easy, and the inventory of mobile devices is free.\n\nQuery: vulnerabilities.vulnerability.title:"iOS 14.8\u2033\n\n\n\nOnce you get the list of assets missing the latest security patch, navigate to the Vulnerability tab. Enter the vulnerabilities.vulnerability.title:"iOS 14.8\u2033 and apply the Group By \u201cVulnerabilities\u201d to get the list of the CVEs that Apple fixes in iOS and iPadOS 14.8 release. Qualys VMDR helps you understand what kind of risk you are taking by allowing the unpatched device to hold corporate data and connect to your corporate network.\n\n\n\nAlso, you can apply the Group By \u201cCVE Ids\u201d to get only the list of CVEs fixed by Apple in iOS and iPadOS 14.8 release.\n\n\n\nQID 610367 is available in signature version SEM VULNSIGS-1.0.0.45, and there is no dependency on any specific Qualys Cloud Agent version.\n\nWith the VMDR for Mobile Devices dashboard, you can track the status of the assets on which the latest security patch and update is missing. The dashboard will be updated with the latest data collected by Qualys Cloud Agent for Android and iOS devices.\n\n\n\n### Remote Response Action\n\nYou can perform the \u201cSend Message\u201d action to inform the end-user to update the devices to the latest OS version. Also, you may provide step-by-step details to update the security patch.\n\nWe recommend updating to the latest iOS and iPadOS version for the assets where vulnerabilities are detected as \u201cConfirmed\u201d.\n\n\n\n### Get Started Now\n\n[Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) is available free for 30 days to help customers detect vulnerabilities, monitor critical device settings, and correlate updates with the correct app versions available on Google Play Store. You can try our solution by [registering for the free 30-day service](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>).", "published": "2021-09-20T14:47:57", "modified": "2021-09-20T14:47:57", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://blog.qualys.com/category/vulnerabilities-threat-research", "reporter": "Swapnil Ahirrao", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-20T16:36:47", "history": [], "viewCount": 11, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212805.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-20T16:36:47", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-09-20T16:36:47", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.rss.RssBulletin", "_object_types": ["robots.models.rss.RssBulletin", "robots.models.base.Bulletin"]}, {"id": "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "hash": "687f712d5db34d7583ea7c585e1e8673", "type": "qualysblog", "bulletinFamily": "blog", "title": "NSO Pegasus iPhone Spyware Vulnerabilities Fixed by Apple \u2013 Detect & Prioritize Using VMDR for Mobile Devices", "description": "Apple recently released iOS and iPadOS [12.5.5](<https://support.apple.com/en-us/HT212824>), [15.0](<https://support.apple.com/en-us/HT212814>), which includes a security update that addresses almost 25 vulnerabilities, including several critical RCE and privilege escalation vulnerabilities. In 12.5.5, Apple fixed 3 critical zero-day vulnerabilities, which are used to [deploy NSO Pegasus iPhone spyware](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>) to secure old iPhones. Earlier in [14.8](<https://support.apple.com/en-us/HT212807>) these 2 critical zero-day vulnerabilities exploited by NSO Pegasus were fixed and on 20th September Apple updated the security advisory and added 11 new vulnerabilities in the 14.8 security update.\n\n_"Apple is aware of a report that this issue may have been actively exploited_," the company said in [security advisory](<https://support.apple.com/en-us/HT212824>). Apple has released a fifth time an immediate security update release to fix critical zero-day vulnerabilities which are actively exploited. Qualys recommends that security teams should immediately update all devices running iOS and iPadOS to the latest version.\n\n### CoreGraphics Arbitrary Code Execution Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30860). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted PDF file. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### WebKit Arbitrary Code Execution Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30858). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted web page. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### XNU Arbitrary Code Execution with Kernel Privileges Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30869). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability may allow a malicious application to execute arbitrary code with kernel privileges on the target system. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### Multiple ImageIO Arbitrary Code Execution Vulnerabilities\n\nApple released a patch in [15.0](<https://support.apple.com/en-us/HT212814>), to fix multiple arbitrary code execution critical vulnerabilities (CVE-2021-30835 and CVE-2021-30847). These vulnerabilities have a CVSSv3 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted image. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).\n\n## Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices\n\n### Discover Assets Missing the Latest iOS Security Updates\n\nThe first step in managing these critical vulnerabilities and reducing risk is to identify the assets. [Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) makes it easy to identify the iOS and iPadOS assets not updated to the latest version 15.0 or 12.5.5. To get the comprehensive visibility of the mobile devices, you need to install [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for Android or iOS/iPadOS on all devices. The device onboarding process is easy, and the inventory of mobile devices is free.\n \n \n Query: vulnerabilities.vulnerability.title:\"iOS 12.5.5\" or vulnerabilities.vulnerability.title:\"iOS 15\"\n\n\n\nOnce you get the list of assets missing the latest security patch, navigate to the Vulnerability tab. Enter the QQL: vulnerabilities.vulnerability.title:"iOS 12.5.5\u2033 or vulnerabilities.vulnerability.title:"iOS 15\u2033 and apply the Group By "Vulnerabilities" to get the list of the CVEs that Apple fixes in iOS and iPadOS 12.5.5, 15.0 releases.[ Qualys VMDR](<https://www.qualys.com/apps/vulnerability-management-detection-response/>) helps you understand what kind of risk you are taking by allowing the unpatched device to hold corporate data and connect to your corporate network.\n\n\n\nAlso, you can apply the Group By "CVE Ids" to get only the list of CVEs fixed by Apple in iOS and iPadOS 12.5.5, 15.0 releases.\n\n\n\nQID 610369 and 610370 are available in signature version SEM VULNSIGS-1.0.0.47, and there is no dependency on any specific Qualys Cloud Agent version.\n\nWith the [VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) dashboard, you can track the status of the assets on which the latest security update is missing. The dashboard will be updated with the latest data collected by [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for iOS/iPadOS devices.\n\n\n\n### Remote Response Action\n\nYou can perform the "Send Message" action to inform the end-user to update the devices to the latest OS version. Also, you may provide step-by-step details to update the security patch.\n\nWe recommend updating to the latest iOS and iPadOS version for the assets where vulnerabilities are detected as "Confirmed".\n\n\n\n[Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) is available free for 30 days to help customers detect vulnerabilities, monitor critical device settings, and correlate updates with the correct app versions available on Google Play Store. You can try our solution by [registering for the free 30-day service](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>).", "published": "2021-09-29T08:28:10", "modified": "2021-09-29T08:28:10", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://blog.qualys.com/category/vulnerabilities-threat-research", "reporter": "Swapnil Ahirrao", "references": [], "cvelist": ["CVE-2021-30835", "CVE-2021-30847", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-10-21T08:40:06", "history": [{"bulletin": {"id": "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "hash": "3da086f0dfdddcbe100d6086faa8d7c3", "type": "qualysblog", "bulletinFamily": "blog", "title": "Apple fixed NSO Pegasus iPhone Spyware Vulnerabilities in iOS/iPadOS 12.5.5 for old iPhones and fixed more vulnerabilities in iOS/iPadOS 15.0 \u2013 Detect & Prioritize Using VMDR for Mobile Devices", "description": "Apple recently released iOS and iPadOS [12.5.5](<https://support.apple.com/en-us/HT212824>), [15.0](<https://support.apple.com/en-us/HT212814>), which includes a security update that addresses almost 25 vulnerabilities, including several critical RCE and privilege escalation vulnerabilities. In 12.5.5, Apple fixed 3 critical zero-day vulnerabilities, which are used to [deploy NSO Pegasus iPhone spyware](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>) to secure old iPhones. Earlier in [14.8](<https://support.apple.com/en-us/HT212807>) these 2 critical zero-day vulnerabilities exploited by NSO Pegasus were fixed and on 20th September Apple updated the security advisory and added 11 new vulnerabilities in the 14.8 security update.\n\n_Apple is aware of a report that this issue may have been actively exploited_," the company said in [security advisory](<https://support.apple.com/en-us/HT212824>). Apple has released a fifth time an immediate security update release to fix critical zero-day vulnerabilities which are actively exploited. Qualys recommends that security teams should immediately update all devices running iOS and iPadOS to the latest version.\n\n### CoreGraphics Arbitrary Code Execution Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30860). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted PDF file. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### WebKit Arbitrary Code Execution Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30858). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted web page. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### XNU Arbitrary Code Execution with Kernel Privileges Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30869). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability may allow a malicious application to execute arbitrary code with kernel privileges on the target system. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### Multiple ImageIO Arbitrary Code Execution Vulnerabilities\n\nApple released a patch in [15.0](<https://support.apple.com/en-us/HT212814>), to fix multiple arbitrary code execution critical vulnerabilities (CVE-2021-30835 and CVE-2021-30847). These vulnerabilities have a CVSSv3 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted image. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).\n\n## Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices\n\n### Discover Assets Missing the Latest iOS Security Updates\n\nThe first step in managing these critical vulnerabilities and reducing risk is to identify the assets. [Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) makes it easy to identify the iOS and iPadOS assets not updated to the latest version 15.0 or 12.5.5. To get the comprehensive visibility of the mobile devices, you need to install [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for Android or iOS/iPadOS on all devices. The device onboarding process is easy, and the inventory of mobile devices is free.\n \n \n Query: vulnerabilities.vulnerability.title:\"iOS 12.5.5\" or vulnerabilities.vulnerability.title:\"iOS 15\"\n\n\n\nOnce you get the list of assets missing the latest security patch, navigate to the Vulnerability tab. Enter the QQL: vulnerabilities.vulnerability.title:"iOS 12.5.5\u2033 or vulnerabilities.vulnerability.title:"iOS 15\u2033 and apply the Group By "Vulnerabilities" to get the list of the CVEs that Apple fixes in iOS and iPadOS 12.5.5, 15.0 releases.[ Qualys VMDR](<https://www.qualys.com/apps/vulnerability-management-detection-response/>) helps you understand what kind of risk you are taking by allowing the unpatched device to hold corporate data and connect to your corporate network.\n\n\n\nAlso, you can apply the Group By "CVE Ids" to get only the list of CVEs fixed by Apple in iOS and iPadOS 12.5.5, 15.0 releases.\n\n\n\nQID 610369 and 610370 are available in signature version SEM VULNSIGS-1.0.0.47, and there is no dependency on any specific Qualys Cloud Agent version.\n\nWith the [VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) dashboard, you can track the status of the assets on which the latest security update is missing. The dashboard will be updated with the latest data collected by [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for iOS/iPadOS devices.\n\n\n\n### Remote Response Action\n\nYou can perform the "Send Message" action to inform the end-user to update the devices to the latest OS version. Also, you may provide step-by-step details to update the security patch.\n\nWe recommend updating to the latest iOS and iPadOS version for the assets where vulnerabilities are detected as "Confirmed".\n\n\n\n[Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) is available free for 30 days to help customers detect vulnerabilities, monitor critical device settings, and correlate updates with the correct app versions available on Google Play Store. You can try our solution by [registering for the free 30-day service](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>).", "published": "2021-09-29T08:28:10", "modified": "2021-09-29T08:28:10", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://blog.qualys.com/category/vulnerabilities-threat-research", "reporter": "Swapnil Ahirrao", "references": [], "cvelist": ["CVE-2021-30835", "CVE-2021-30847", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-29T08:35:35", "history": [], "viewCount": 9, "enchantments": {}, "objectVersion": "1.6"}, "lastseen": "2021-09-29T08:35:35", "differentElements": ["description", "title"], "edition": 1}, {"bulletin": {"id": "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "hash": "6408d485e7223ffad8abc4fe26b58827", "type": "qualysblog", "bulletinFamily": "blog", "title": "NSO Pegasus iPhone Spyware Vulnerabilities Fixed by Apple \u2013 Detect & Prioritize Using VMDR for Mobile Devices", "description": "Apple recently released iOS and iPadOS [12.5.5](<https://support.apple.com/en-us/HT212824>), [15.0](<https://support.apple.com/en-us/HT212814>), which includes a security update that addresses almost 25 vulnerabilities, including several critical RCE and privilege escalation vulnerabilities. In 12.5.5, Apple fixed 3 critical zero-day vulnerabilities, which are used to [deploy NSO Pegasus iPhone spyware](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>) to secure old iPhones. Earlier in [14.8](<https://support.apple.com/en-us/HT212807>) these 2 critical zero-day vulnerabilities exploited by NSO Pegasus were fixed and on 20th September Apple updated the security advisory and added 11 new vulnerabilities in the 14.8 security update.\n\n_"Apple is aware of a report that this issue may have been actively exploited_," the company said in [security advisory](<https://support.apple.com/en-us/HT212824>). Apple has released a fifth time an immediate security update release to fix critical zero-day vulnerabilities which are actively exploited. Qualys recommends that security teams should immediately update all devices running iOS and iPadOS to the latest version.\n\n### CoreGraphics Arbitrary Code Execution Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30860). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted PDF file. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### WebKit Arbitrary Code Execution Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30858). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted web page. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### XNU Arbitrary Code Execution with Kernel Privileges Vulnerability\n\nApple released a patch in [12.5.5](<https://support.apple.com/en-us/HT212824>), to fix arbitrary code execution critical vulnerability (CVE-2021-30869). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability may allow a malicious application to execute arbitrary code with kernel privileges on the target system. It affects the iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n### Multiple ImageIO Arbitrary Code Execution Vulnerabilities\n\nApple released a patch in [15.0](<https://support.apple.com/en-us/HT212814>), to fix multiple arbitrary code execution critical vulnerabilities (CVE-2021-30835 and CVE-2021-30847). These vulnerabilities have a CVSSv3 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a remote attacker to execute arbitrary code on the target system by opening a specially crafted image. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).\n\n## Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices\n\n### Discover Assets Missing the Latest iOS Security Updates\n\nThe first step in managing these critical vulnerabilities and reducing risk is to identify the assets. [Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) makes it easy to identify the iOS and iPadOS assets not updated to the latest version 15.0 or 12.5.5. To get the comprehensive visibility of the mobile devices, you need to install [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for Android or iOS/iPadOS on all devices. The device onboarding process is easy, and the inventory of mobile devices is free.\n \n \n Query: vulnerabilities.vulnerability.title:\"iOS 12.5.5\" or vulnerabilities.vulnerability.title:\"iOS 15\"\n\n\n\nOnce you get the list of assets missing the latest security patch, navigate to the Vulnerability tab. Enter the QQL: vulnerabilities.vulnerability.title:"iOS 12.5.5\u2033 or vulnerabilities.vulnerability.title:"iOS 15\u2033 and apply the Group By "Vulnerabilities" to get the list of the CVEs that Apple fixes in iOS and iPadOS 12.5.5, 15.0 releases.[ Qualys VMDR](<https://www.qualys.com/apps/vulnerability-management-detection-response/>) helps you understand what kind of risk you are taking by allowing the unpatched device to hold corporate data and connect to your corporate network.\n\n\n\nAlso, you can apply the Group By "CVE Ids" to get only the list of CVEs fixed by Apple in iOS and iPadOS 12.5.5, 15.0 releases.\n\n\n\nQID 610369 and 610370 are available in signature version SEM VULNSIGS-1.0.0.47, and there is no dependency on any specific Qualys Cloud Agent version.\n\nWith the [VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) dashboard, you can track the status of the assets on which the latest security update is missing. The dashboard will be updated with the latest data collected by [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for iOS/iPadOS devices.\n\n\n\n### Remote Response Action\n\nYou can perform the "Send Message" action to inform the end-user to update the devices to the latest OS version. Also, you may provide step-by-step details to update the security patch.\n\nWe recommend updating to the latest iOS and iPadOS version for the assets where vulnerabilities are detected as "Confirmed".\n\n\n\n[Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) is available free for 30 days to help customers detect vulnerabilities, monitor critical device settings, and correlate updates with the correct app versions available on Google Play Store. You can try our solution by [registering for the free 30-day service](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>).", "published": "2021-09-29T08:28:10", "modified": "2021-09-29T08:28:10", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://blog.qualys.com/category/vulnerabilities-threat-research", "reporter": "Swapnil Ahirrao", "references": [], "cvelist": ["CVE-2021-30835", "CVE-2021-30847", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-29T16:35:17", "history": [], "viewCount": 12, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771"]}, {"type": "cve", "idList": ["CVE-2021-30869", "CVE-2021-30858", "CVE-2021-30860"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:6A9CD6F085628D08978727C0FF597535", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "MACOS_HT212805.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "APPLE_IOS_148_CHECK.NBIN", "ITUNES_12_12.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL", "ITUNES_12_12_BANNER.NASL", "APPLE_IOS_15_CHECK.NBIN"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "kaspersky", "idList": ["KLA12293"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-29T16:35:17", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-29T16:35:17", "rev": 2}}, "objectVersion": "1.6"}, "lastseen": "2021-09-29T16:35:17", "differentElements": ["cvss"], "edition": 2}], "viewCount": 12, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30869", "CVE-2021-30835", "CVE-2021-30860", "CVE-2021-30847", "CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "nessus", "idList": ["OPENSUSE-2021-1369.NASL", "MACOS_HT212825.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN", "APPLE_IOS_15_CHECK.NBIN", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "ITUNES_12_12_BANNER.NASL", "DEBIAN_DSA-4975.NASL", "701363.PASL", "OPENSUSE-2021-3353.NASL", "SUSE_SU-2021-3353-1.NASL", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3282-1.NASL", "ITUNES_12_12.NASL", "MACOS_HT212805.NASL"]}, {"type": "thn", "idList": ["THN:6A9CD6F085628D08978727C0FF597535", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "kaspersky", "idList": ["KLA12293"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:1369-1", "OPENSUSE-SU-2021:3353-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-10-21T08:40:06", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-10-21T08:40:06", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.rss.RssBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.rss.RssBulletin"]}, {"id": "QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "hash": "e90bf9908811b4ab4e3a8fe718452f5b", "type": "qualysblog", "bulletinFamily": "blog", "title": "Apple fixes zero-day in iOS and iPadOS 15.0.2 emergency release: Detect and Prioritize Vulnerabilities using VMDR for Mobile Devices", "description": "Apple recently released iOS and iPadOS [15.0.2](<https://support.apple.com/en-us/HT212846>) as an emergency security update that addresses 1 critical zero-day vulnerabilities, which is exploited in wild. Qualys recommends that security teams should immediately update all devices running iOS and iPadOS to the latest version. "_Apple is aware of a report that this issue may have been actively exploited_," the company said in [security advisories](<https://support.apple.com/en-us/HT212846>).\n\nThis year, Apple has released multiple emergency releases to fix the actively exploited vulnerabilities which _Apple is aware of a report that this issue may have been actively exploited_. Successful exploitation of the vulnerability allows an application to execute arbitrary code with kernel privileges, and spyware like [Pegasus](<https://blog.qualys.com/vulnerabilities-threat-research/2021/07/23/protect-your-devices-from-pegasus-spyware-using-vmdr-for-mobile-devices-proactive-approach>) can be easily deployed on affect devices, and exploiting other vulnerabilities, it will get access to a device.\n\nFollowing are the recent exploits and respective iOS and iPadOS versions in which they have been fixed by Apple since Jan 2021:\n\nCVE-2021-1870, CVE-2021-1871, CVE-2021-1782 \u2013 Fixed in [iOS and iPadOS 14.4](<https://support.apple.com/en-us/HT212146>)\n\nCVE-2021-1879 \u2013 Fixed in [iOS and iPadOS 14.4.2](<https://support.apple.com/en-us/HT212256>)\n\n[CVE-2021-30661](<https://blog.qualys.com/product-tech/2021/04/28/ios-and-ipados-14-5-security-update-vulnerabilities-discover-and-take-remote-response-action-using-vmdr-for-mobile-devices>) \u2013 Fixed in [iOS and iPadOS 14.5](<https://support.apple.com/en-us/HT212317>)\n\nCVE-2021-30665, CVE-2021-30663, CVE-2021-30666, CVE-2021-30661 \u2013 Fixed in [iOS and iPadOS 14.5.1](<https://support.apple.com/en-us/HT212336>) and [iOS 12.5.3](<https://support.apple.com/en-us/HT212341>)\n\nCVE-2021-30761, CVE-2021-30762 \u2013 Fixed in [iOS 12.5.4](<https://support.apple.com/en-us/HT212548>)\n\n[CVE-2021-30807](<https://blog.qualys.com/vulnerabilities-threat-research/2021/07/28/ios-and-ipados-14-7-and-14-7-1-security-update-discover-vulnerabilities-and-take-remote-response-action-using-vmdr-for-mobile-devices>) \u2013 Fixed in [iOS and iPadOS 14.7.1](<https://support.apple.com/en-us/HT212623>)\n\n[CVE-2021-30860, CVE-2021-30858, CVE-2021-30869](<https://blog.qualys.com/vulnerabilities-threat-research/2021/09/20/detect-prioritize-nso-pegasus-iphone-spyware-vulnerabilities-using-vmdr-for-mobile-devices>) \u2013 Fixed in [iOS and iPadOS 14.8](<https://support.apple.com/en-us/HT212807>) and [iOS 12.5.5](<https://support.apple.com/en-us/HT212824>)\n\n### Integer Overflow Vulnerability\n\nApple released a patch to fix integer overflow critical vulnerability (CVE-2021-30883). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a malicious application to execute arbitrary code with kernel privileges. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)\n\n### Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices\n\n#### Discover Assets Missing the Latest iOS Security Update\n\nThe first step in managing these critical vulnerabilities and reducing risk is to identify the assets. [Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) makes it easy to identify the iOS and iPadOS assets not updated to the latest version iOS and iPadOS 15.0.2. To get the comprehensive visibility of the mobile devices, you need to install [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for Android or iOS/iPadOS on all mobile devices. The device onboarding process is easy, and the inventory of mobile devices is free.\n\nQuery: vulnerabilities.vulnerability.title:"iOS 15.0.2\u2033\n\n\n\nOnce you get the list of assets missing the latest security patch, navigate to the Vulnerability tab. Enter the vulnerabilities.vulnerability.title:"iOS 15.0.2\u2033 and apply the Group By \u201cVulnerabilities\u201d to get the list of the CVEs that Apple fixes in iOS and iPadOS 15.0.2 release. Qualys VMDR helps you understand what kind of risk you are taking by allowing the unpatched device to hold corporate data and connect to your corporate network.\n\n\n\nAlso, you can apply the Group By \u201cCVE Ids\u201d to get only the list of CVEs fixed by Apple in iOS and iPadOS 15.0.2 release.\n\n\n\nQID 610371 is available in signature version SEM VULNSIGS-1.0.0.48, and there is no dependency on any specific Qualys Cloud Agent version.\n\nWith the VMDR for Mobile Devices dashboard, you can track the status of the assets on which the latest security patch and update is missing. The dashboard will be updated with the latest data collected by Qualys Cloud Agent for Android and iOS devices.\n\n\n\n### Remote Response Action\n\nYou can perform the \u201cSend Message\u201d action to inform the end-user to update the devices to the latest OS version. Also, you may provide step-by-step details to update the security patch.\n\nWe recommend updating to the latest iOS and iPadOS version for the assets where vulnerabilities are detected as \u201cConfirmed\u201d.\n\n\n\n### Get Started Now\n\n[Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) is available free for 30 days to help customers detect vulnerabilities, monitor critical device settings, and correlate updates with the correct app versions available on Google Play Store. You can try our solution by [registering for the free 30-day service](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>).", "published": "2021-10-18T07:41:18", "modified": "2021-10-18T07:41:18", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://blog.qualys.com/category/vulnerabilities-threat-research", "reporter": "Swapnil Ahirrao", "references": [], "cvelist": ["CVE-2021-1782", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-1879", "CVE-2021-30661", "CVE-2021-30663", "CVE-2021-30665", "CVE-2021-30666", "CVE-2021-30761", "CVE-2021-30762", "CVE-2021-30807", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869", "CVE-2021-30883"], "immutableFields": [], "lastseen": "2021-10-21T08:40:06", "history": [{"bulletin": {"id": "QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "hash": "a2935377cc5c6aaff846ffa507a0ff64", "type": "qualysblog", "bulletinFamily": "blog", "title": "Apple fixes zero-day in iOS and iPadOS 15.0.2 emergency release: Detect and Prioritize Vulnerabilities using VMDR for Mobile Devices", "description": "Apple recently released iOS and iPadOS [15.0.2](<https://support.apple.com/en-us/HT212846>) as an emergency security update that addresses 1 critical zero-day vulnerabilities, which is exploited in wild. Qualys recommends that security teams should immediately update all devices running iOS and iPadOS to the latest version. "_Apple is aware of a report that this issue may have been actively exploited_," the company said in [security advisories](<https://support.apple.com/en-us/HT212846>).\n\nThis year, Apple has released multiple emergency releases to fix the actively exploited vulnerabilities which _Apple is aware of a report that this issue may have been actively exploited_. Successful exploitation of the vulnerability allows an application to execute arbitrary code with kernel privileges, and spyware like [Pegasus](<https://blog.qualys.com/vulnerabilities-threat-research/2021/07/23/protect-your-devices-from-pegasus-spyware-using-vmdr-for-mobile-devices-proactive-approach>) can be easily deployed on affect devices, and exploiting other vulnerabilities, it will get access to a device.\n\nFollowing are the recent exploits and respective iOS and iPadOS versions in which they have been fixed by Apple since Jan 2021:\n\nCVE-2021-1870, CVE-2021-1871, CVE-2021-1782 \u2013 Fixed in [iOS and iPadOS 14.4](<https://support.apple.com/en-us/HT212146>)\n\nCVE-2021-1879 \u2013 Fixed in [iOS and iPadOS 14.4.2](<https://support.apple.com/en-us/HT212256>)\n\n[CVE-2021-30661](<https://blog.qualys.com/product-tech/2021/04/28/ios-and-ipados-14-5-security-update-vulnerabilities-discover-and-take-remote-response-action-using-vmdr-for-mobile-devices>) \u2013 Fixed in [iOS and iPadOS 14.5](<https://support.apple.com/en-us/HT212317>)\n\nCVE-2021-30665, CVE-2021-30663, CVE-2021-30666, CVE-2021-30661 \u2013 Fixed in [iOS and iPadOS 14.5.1](<https://support.apple.com/en-us/HT212336>) and [iOS 12.5.3](<https://support.apple.com/en-us/HT212341>)\n\nCVE-2021-30761, CVE-2021-30762 \u2013 Fixed in [iOS 12.5.4](<https://support.apple.com/en-us/HT212548>)\n\n[CVE-2021-30807](<https://blog.qualys.com/vulnerabilities-threat-research/2021/07/28/ios-and-ipados-14-7-and-14-7-1-security-update-discover-vulnerabilities-and-take-remote-response-action-using-vmdr-for-mobile-devices>) \u2013 Fixed in [iOS and iPadOS 14.7.1](<https://support.apple.com/en-us/HT212623>)\n\n[CVE-2021-30860, CVE-2021-30858, CVE-2021-30869](<https://blog.qualys.com/vulnerabilities-threat-research/2021/09/20/detect-prioritize-nso-pegasus-iphone-spyware-vulnerabilities-using-vmdr-for-mobile-devices>) \u2013 Fixed in [iOS and iPadOS 14.8](<https://support.apple.com/en-us/HT212807>) and [iOS 12.5.5](<https://support.apple.com/en-us/HT212824>)\n\n### Integer Overflow Vulnerability\n\nApple released a patch to fix integer overflow critical vulnerability (CVE-2021-30883). This vulnerability has a CVSSv3.1 base score of 8.8 and should be prioritized for patching as successful exploitation of the vulnerability allows a malicious application to execute arbitrary code with kernel privileges. It affects the iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)\n\n### Discover Vulnerabilities and Take Remote Response Action Using VMDR for Mobile Devices\n\n#### Discover Assets Missing the Latest iOS Security Update\n\nThe first step in managing these critical vulnerabilities and reducing risk is to identify the assets. [Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) makes it easy to identify the iOS and iPadOS assets not updated to the latest version iOS and iPadOS 15.0.2. To get the comprehensive visibility of the mobile devices, you need to install [Qualys Cloud Agent](<https://www.qualys.com/cloud-agent/>) for Android or iOS/iPadOS on all mobile devices. The device onboarding process is easy, and the inventory of mobile devices is free.\n\nQuery: vulnerabilities.vulnerability.title:"iOS 15.0.2\u2033\n\n\n\nOnce you get the list of assets missing the latest security patch, navigate to the Vulnerability tab. Enter the vulnerabilities.vulnerability.title:"iOS 15.0.2\u2033 and apply the Group By \u201cVulnerabilities\u201d to get the list of the CVEs that Apple fixes in iOS and iPadOS 15.0.2 release. Qualys VMDR helps you understand what kind of risk you are taking by allowing the unpatched device to hold corporate data and connect to your corporate network.\n\n\n\nAlso, you can apply the Group By \u201cCVE Ids\u201d to get only the list of CVEs fixed by Apple in iOS and iPadOS 15.0.2 release.\n\n\n\nQID 610371 is available in signature version SEM VULNSIGS-1.0.0.48, and there is no dependency on any specific Qualys Cloud Agent version.\n\nWith the VMDR for Mobile Devices dashboard, you can track the status of the assets on which the latest security patch and update is missing. The dashboard will be updated with the latest data collected by Qualys Cloud Agent for Android and iOS devices.\n\n\n\n### Remote Response Action\n\nYou can perform the \u201cSend Message\u201d action to inform the end-user to update the devices to the latest OS version. Also, you may provide step-by-step details to update the security patch.\n\nWe recommend updating to the latest iOS and iPadOS version for the assets where vulnerabilities are detected as \u201cConfirmed\u201d.\n\n\n\n### Get Started Now\n\n[Qualys VMDR for Mobile Devices](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>) is available free for 30 days to help customers detect vulnerabilities, monitor critical device settings, and correlate updates with the correct app versions available on Google Play Store. You can try our solution by [registering for the free 30-day service](<https://www.qualys.com/apps/vulnerability-management-detection-response/mobile-devices/>).", "published": "2021-10-18T07:41:18", "modified": "2021-10-18T07:41:18", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://blog.qualys.com/category/vulnerabilities-threat-research", "reporter": "Swapnil Ahirrao", "references": [], "cvelist": ["CVE-2021-1782", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-1879", "CVE-2021-30661", "CVE-2021-30663", "CVE-2021-30665", "CVE-2021-30666", "CVE-2021-30761", "CVE-2021-30762", "CVE-2021-30807", "CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869", "CVE-2021-30883"], "immutableFields": [], "lastseen": "2021-10-18T08:36:38", "history": [], "viewCount": 11, "enchantments": {"dependencies": {"references": [{"type": "thn", "idList": ["THN:3251602ACD4E04F5F4C7F140878960E0", "THN:4EFE9C3A3A0DEB0019296A14C9EAC1FA", "THN:59DC40FBDFBEBE12E11B551510E4B2E6", "THN:D28CBE91134FEFC2BFDB69F581D44799", "THN:739D9EFE8C7F1B29E2430DAC65CDEE52", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:F0D5DEDB6BEE875D30F098FB7A4E55A1", "THN:080F85D43290560CDED8F282EE277B00", "THN:0D13405795D42B516C33D8E56A44BA9D", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:D9516FC71F8DBF10DCC510845A7FBC9E", "MALWAREBYTES:D94336E4CB7536CC9CECC8C6FF696A77", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404", "CISA:E1F65044D75ACB497440E12A5184D628"]}, {"type": "attackerkb", "idList": ["AKB:183D8BB0-8586-4082-B243-93481A8DD739", "AKB:13D7A136-347D-489A-908C-898F80E4B285", "AKB:61DB1B67-FFE2-4A84-8445-DD1303479F56", "AKB:623B1BA8-5058-447C-A596-8E19F76075E6", "AKB:673C0F46-250F-49D1-B228-00771E15172B", "AKB:D8802B97-577F-4D1B-BA3C-1D6D3EBB2FF2", "AKB:15A288E1-FB97-49D8-B8D3-66504415C107", "AKB:4324FF7F-3A87-4B49-8D0A-C475F54F194F", "AKB:1FAC9EAB-6C14-40A6-94CA-04062F93D773", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:FF274F38-9A0C-47ED-97B9-57C114AB1511", "AKB:B7E55568-7DDB-4883-8CA4-2D0B592F4D60", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771"]}, {"type": "threatpost", "idList": ["THREATPOST:233067E74345C95478CA096160DFCE43", "THREATPOST:8372A3E62BAD4992E997A34240A7EB45", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:33E56DEB736406F9DD08C7533BF1812B", "THREATPOST:760D774FCA5FD00BE1174D5CB428884D", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1F4EC22B4239CE182669792125155781", "THREATPOST:4918B2D694EFC16538A8825D39D8FBD5"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "MACOS_HT212335.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_1253_CHECK.NBIN", "701363.PASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "APPLE_IOS_1471_CHECK.NBIN", "MACOS_HT212622.NASL", "701344.PASL", "APPLE_IOS_1451_CHECK.NBIN", "MACOS_HT212825.NASL", "APPLE_IOS_1502_CHECK.NBIN", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "APPLE_IOS_1254_CHECK.NBIN"]}, {"type": "cve", "idList": ["CVE-2021-30869", "CVE-2021-30666", "CVE-2021-1870", "CVE-2021-1871", "CVE-2021-30858", "CVE-2021-30663", "CVE-2021-1879", "CVE-2021-1782", "CVE-2021-30661", "CVE-2021-30883", "CVE-2021-30665", "CVE-2021-30860", "CVE-2021-30761", "CVE-2021-30762"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-1871", "RH:CVE-2021-30762", "RH:CVE-2021-1870", "RH:CVE-2021-30663", "RH:CVE-2021-30761", "RH:CVE-2021-30666", "RH:CVE-2021-30661", "RH:CVE-2021-30858", "RH:CVE-2021-30665"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30761", "UB:CVE-2021-30762", "UB:CVE-2021-30858", "UB:CVE-2021-30661", "UB:CVE-2021-30663", "UB:CVE-2021-30666", "UB:CVE-2021-1871", "UB:CVE-2021-1870", "UB:CVE-2021-30665"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/APPLE-OSX-WEBKIT-CVE-2021-30665/", "MSF:ILITIES/APPLE-OSX-WEBKIT-CVE-2021-30663/"]}, {"type": "mmpc", "idList": ["MMPC:6A79615935EB4546087AB44569C7B207"]}], "modified": "2021-10-18T08:36:38", "rev": 2}, "score": {"value": 5.9, "vector": "NONE", "modified": "2021-10-18T08:36:38", "rev": 2}}, "objectVersion": "1.6"}, "lastseen": "2021-10-18T08:36:38", "differentElements": ["cvss"], "edition": 1}], "viewCount": 11, "enchantments": {"dependencies": {"references": [{"type": "malwarebytes", "idList": ["MALWAREBYTES:D9516FC71F8DBF10DCC510845A7FBC9E", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "thn", "idList": ["THN:59DC40FBDFBEBE12E11B551510E4B2E6", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:3251602ACD4E04F5F4C7F140878960E0", "THN:080F85D43290560CDED8F282EE277B00", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:F0D5DEDB6BEE875D30F098FB7A4E55A1", "THN:4EFE9C3A3A0DEB0019296A14C9EAC1FA", "THN:739D9EFE8C7F1B29E2430DAC65CDEE52", "THN:0D13405795D42B516C33D8E56A44BA9D", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "cisa", "idList": ["CISA:E1F65044D75ACB497440E12A5184D628", "CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:183D8BB0-8586-4082-B243-93481A8DD739", "AKB:4324FF7F-3A87-4B49-8D0A-C475F54F194F", "AKB:FF274F38-9A0C-47ED-97B9-57C114AB1511", "AKB:13D7A136-347D-489A-908C-898F80E4B285", "AKB:1FAC9EAB-6C14-40A6-94CA-04062F93D773", "AKB:673C0F46-250F-49D1-B228-00771E15172B", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:F8C5CED8-6CD4-4034-ADE0-2B754D84500D", "AKB:61DB1B67-FFE2-4A84-8445-DD1303479F56", "AKB:D8802B97-577F-4D1B-BA3C-1D6D3EBB2FF2", "AKB:15A288E1-FB97-49D8-B8D3-66504415C107", "AKB:B7E55568-7DDB-4883-8CA4-2D0B592F4D60", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:623B1BA8-5058-447C-A596-8E19F76075E6"]}, {"type": "threatpost", "idList": ["THREATPOST:33E56DEB736406F9DD08C7533BF1812B", "THREATPOST:760D774FCA5FD00BE1174D5CB428884D", "THREATPOST:1F4EC22B4239CE182669792125155781", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:233067E74345C95478CA096160DFCE43", "THREATPOST:8372A3E62BAD4992E997A34240A7EB45", "THREATPOST:4918B2D694EFC16538A8825D39D8FBD5"]}, {"type": "nessus", "idList": ["APPLE_IOS_1451_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "APPLE_IOS_1253_CHECK.NBIN", "APPLE_IOS_1502_CHECK.NBIN", "701363.PASL", "MACOS_HT212825.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212335.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701344.PASL", "MACOS_HT212622.NASL", "UBUNTU_USN-5087-1.NASL", "APPLE_IOS_1471_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "APPLE_IOS_1254_CHECK.NBIN"]}, {"type": "cve", "idList": ["CVE-2021-1879", "CVE-2021-30860", "CVE-2021-30858", "CVE-2021-30665", "CVE-2021-1782", "CVE-2021-30883", "CVE-2021-30661", "CVE-2021-30666", "CVE-2021-1870", "CVE-2021-30807", "CVE-2021-30663", "CVE-2021-30869", "CVE-2021-30762", "CVE-2021-1871", "CVE-2021-30761"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-1871", "RH:CVE-2021-30761", "RH:CVE-2021-30666", "RH:CVE-2021-1870", "RH:CVE-2021-30661", "RH:CVE-2021-30665", "RH:CVE-2021-30762", "RH:CVE-2021-30858", "RH:CVE-2021-30663"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30665", "UB:CVE-2021-1871", "UB:CVE-2021-30663", "UB:CVE-2021-30762", "UB:CVE-2021-30661", "UB:CVE-2021-1870", "UB:CVE-2021-30761", "UB:CVE-2021-30858", "UB:CVE-2021-30666"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/APPLE-OSX-WEBKIT-CVE-2021-30663/", "MSF:ILITIES/APPLE-OSX-WEBKIT-CVE-2021-30665/"]}, {"type": "mssecure", "idList": ["MSSECURE:6A79615935EB4546087AB44569C7B207"]}], "modified": "2021-10-21T08:40:06", "rev": 2}, "score": {"value": 5.9, "vector": "NONE", "modified": "2021-10-21T08:40:06", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.rss.RssBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.rss.RssBulletin"]}], "hivepro": [{"id": "HIVEPRO:433978802EA1E557CC5202EE1014E67B", "hash": "a2d898a6629ea20b8049dd3cf0bd998a", "type": "hivepro", "bulletinFamily": "info", "title": "Apple fixes the zero-day vulnerabilities exploited by Pegasus spyware named \u201cFORCEDENTRY\u201d", "description": "#### THREAT LEVEL: Red.\n\nFor a detailed advisory, [download the pdf file here.](<https://www.hivepro.com/wp-content/uploads/2021/09/TA202132.pdf>)\n\nTwo actively exploited vulnerabilities (CVE-2021-30858 and CVE-2021-30860) have been fixed in Apple's iOS 14.8, iPadOS 14.8, watchOS 7.6.2, macOS Big Sur 11.6, and Safari 14.1.2 releases. The NSO group carried out the attack by simply sending a malicious text message which were actually Adobe PSD files that crashed the iMessage component responsible for automatically rendering images and then deployed the Pegasus surveillance tool. Users of Apple's iPhone, iPad, Mac, and Apple Watch should update their software right away to avoid any potential hazards resulting from active exploitation of the holes.\n\n#### Vulnerability Details\n\n**CVE ID**| **Affected CPEs**| **Vulnerability Name** \n---|---|--- \nCVE-2021-30858| cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*| Arbitrary code execution \nCVE-2021-30860| cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* \n cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*: \ncpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:* \ncpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:* \ncpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*| Integer overflow leading to arbitrary code execution. \n \n#### Threat Actor\n\n**Name**| **Known as**| **Origin**| **Target Locations**| **Target**| \n---|---|---|---|---|--- \nNSO group| Pegasus spyware| Israel| Worldwide| Surveillance, Financial gain| \n \n#### Patch Links\n\n<https://support.apple.com/en-us/HT212804>\n\n<https://support.apple.com/en-us/HT212805>\n\n<https://support.apple.com/en-us/HT212806>\n\n<https://support.apple.com/en-us/HT212807>\n\n#### References\n\n<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>\n\n<https://arstechnica.com/information-technology/2021/09/apple-fixes-imessage-zero-day-exploited-by-pegasus-spyware/>", "published": "2021-09-16T13:49:19", "modified": "2021-09-16T13:49:19", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.hivepro.com/apple-fixes-the-zero-day-vulnerabilities-exploited-by-pegasus-spyware-named-forcedentry/", "reporter": "Hive Pro", "references": [], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-20T13:19:08", "history": [{"bulletin": {"id": "HIVEPRO:433978802EA1E557CC5202EE1014E67B", "hash": "14f9ca3b040cf7ac2a5d42480de2d484", "type": "hivepro", "bulletinFamily": "info", "title": "Apple fixes the zero-day vulnerabilities exploited by Pegasus spyware named \u201cFORCEDENTRY\u201d", "description": "#### THREAT LEVEL: Red.\n\nFor a detailed advisory, [download the pdf file here](<https://www.hivepro.com/wp-content/uploads/2021/09/TA202132.pdf>)[.](<https://www.hivepro.com/wp-content/uploads/2021/08/TA202130.pdf>)\n\nTwo actively exploited vulnerabilities (CVE-2021-30858 and CVE-2021-30858) have been fixed in Apple's iOS 14.8, iPadOS 14.8, watchOS 7.6.2, macOS Big Sur 11.6, and Safari 14.1.2 releases. The NSO group carried out the attack by simply sending a malicious text message which were actually Adobe PSD files that crashed the iMessage component responsible for automatically rendering images and then deployed the Pegasus surveillance tool. Users of Apple's iPhone, iPad, Mac, and Apple Watch should update their software right away to avoid any potential hazards resulting from active exploitation of the holes.\n\n#### Vulnerability Details\n\n**CVE ID**| **Affected CPEs**| **Vulnerability Name** \n---|---|--- \nCVE-2021-30858| cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*| Arbitrary code execution \nCVE-2021-30858| cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* \n cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*: \ncpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:* \ncpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:* \ncpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* \ncpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*| Integer overflow leading to arbitrary code execution. \n \n#### Threat Actor\n\n**Name**| **Known as**| **Origin**| **Target Locations**| **Target**| \n---|---|---|---|---|--- \nNSO group| Pegasus spyware| Israel| Worldwide| Surveillance, Financial gain| \n \n#### Patch Links\n\n<https://support.apple.com/en-us/HT212804>\n\n<https://support.apple.com/en-us/HT212805>\n\n<https://support.apple.com/en-us/HT212806>\n\n<https://support.apple.com/en-us/HT212807>\n\n#### References\n\n<https://thehackernews.com/2021/09/apple-issues-urgent-updates-to-fix-new.html>\n\n<https://arstechnica.com/information-technology/2021/09/apple-fixes-imessage-zero-day-exploited-by-pegasus-spyware/>", "published": "2021-09-16T13:49:19", "modified": "2021-09-16T13:49:19", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.hivepro.com/apple-fixes-the-zero-day-vulnerabilities-exploited-by-pegasus-spyware-named-forcedentry/", "reporter": "Hive Pro", "references": [], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-16T15:19:08", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL"]}], "modified": "2021-09-16T15:19:08", "rev": 2}, "score": {"value": 7.0, "vector": "NONE", "modified": "2021-09-16T15:19:08", "rev": 2}}, "objectVersion": "1.6"}, "lastseen": "2021-09-16T15:19:08", "differentElements": ["cvelist", "description"], "edition": 1}], "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212805.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-20T13:19:08", "rev": 2}, "score": {"value": 5.9, "vector": "NONE", "modified": "2021-09-20T13:19:08", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.rss.RssBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.rss.RssBulletin"]}], "threatpost": [{"id": "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "hash": "7d548b179c4b3146575e7972154b1eba", "type": "threatpost", "bulletinFamily": "info", "title": "Apple Patches 3 More Zero-Days Under Active Attack", "description": "Apple has patched three actively exploited zero-day security vulnerabilities in updates to iOS and macOS, one of which can allow an attacker to execute arbitrary code with kernel privileges.\n\nApple released two updates on Thursday: iOS 12.5.5, which patches three zero-days that affect older versions of iPhone and iPod devices, and Security Update 2021-006 Catalina for macOS Catalina, which patches one of same vulnerabilities, CVE-2021-30869, that also affects macOS.\n\nThe XNU kernel vulnerability \u2014 the discovery of which was attributed to Google researchers Erye Hernandez and Clemente Lecigne of Google Threat Analysis Group and Ian Beer of Google Project Zero \u2014 is a type-confusion issue that Apple addressed with \u201cimproved state handling,\u201d according to [its advisory](<https://support.apple.com/en-us/HT212825>).\n\n\u201cA malicious application may be able to execute arbitrary code with kernel privileges,\u201d the company said. \u201cApple is aware of reports that an exploit for this issue exists in the wild.\u201d\n\nThe flaw also affects the WebKit browser engine, which is likely why [it caught the attention](<https://twitter.com/ShaneHuntley/status/1441102086385455112?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1441102086385455112%7Ctwgr%5E%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.theregister.com%2F2021%2F09%2F24%2Fapple_zero_day%2F>) of the Google researchers. The issue affects macOS Catalina as well as iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\n## **Pegasus Zero-Day Patched for Older Devices**\n\nAnother zero-day flaw patched in the iOS update also affects WebKit on the same older iOS devices. The issue tracked as CVE-2021-30858 is described by Apple as a use-after-free issue that the company addressed with improved memory management. It allows an attacker to process maliciously crafted web content that may lead to arbitrary code execution, according [to Apple\u2019s advisory](<https://support.apple.com/en-us/HT212824>).\n\n\u201cApple is aware of a report that this issue may have been actively exploited,\u201d the company said.\n\nA third bug patched in the iOS update \u2014 a zero-click exploit discovered by Citizen Lab \u2014 already [made headlines](<https://threatpost.com/apple-emergency-fix-nso-zero-click-zero-day/169416/>) earlier this month when Apple issued a series of emergency patches on Sept. 13 for it to cover the latest devices running iOS and macOS.\n\nThe vulnerability allows for an attacker to process a maliciously crafted PDF that may lead to arbitrary code execution. The fix issued Thursday for the integer-overflow bug \u201cwas addressed with improved input validation,\u201d according to Apple, and covers older devices: iPhone 5s, iPhone 6, iPhone 6 Plus, iPad Air, iPad mini 2, iPad mini 3, and iPod touch (6th generation).\n\nCitizen Lab detected the flaw \u2014 tracked by Apple as CVE-2021-30860, a flaw in CoreGraphics \u2014 targeting iMessaging in August. Researchers dubbed it ForcedEntry and alleged that it had been used to illegally spy on Bahraini activists with [NSO Group\u2019s Pegasus spyware](<https://threatpost.com/nso-group-data-pegasus/167897/>).\n\n## **Keeping Up with 0-Days**\n\nThe latest Apple security updates come on the heels of [news earlier this week](<https://threatpost.com/unpatched-apple-zero-day-code-execution/174915/>) that it quietly slid out an incomplete patch for a zero-day vulnerability in its macOS Finder system \u2014 which hasn\u2019t fixed the problem yet. It could allow remote attackers to trick users into running arbitrary commands.\n\nIndeed Apple, like many other vendors, spends a lot of its time trying to keep up with security vulnerabilities\u2014something at which it \u201cdoes a great job,\u201d noted Hank Schless, senior manager of security solutions at endpoint-to-cloud security firm Lookout.\n\n\u201cEven though Apple has been in the news a number of times over these zero-day vulnerabilities, software developers everywhere run into vulnerabilities in their code,\u201d he observed in an email to Threatpost.\n\nHowever, these patches are worth nothing and corporate data is at risk if people don\u2019t update their mobile devices in particular, as soon as fixes for actively exploited flaws are available, Schless warned.\n\n\u201cPeople often ignore them until they\u2019re forced to update,\u201d he said. \u201cThis could be risky to an enterprise that allows its employees to access corporate resources from their mobile devices\u2026[which is] just about every enterprise out there.\u201d\n\n_**Rule #1 of Linux Security: **__No cybersecurity solution is viable if you don\u2019t have the basics down. [**JOIN**](<https://threatpost.com/webinars/4-golden-rules-linux-security/?utm_source=ART&utm_medium=ART&utm_campaign=September_Uptycs_Webinar>) Threatpost and Linux security pros at Uptycs for a LIVE roundtable on the [**4 Golden Rules of Linux Security**](<https://threatpost.com/webinars/4-golden-rules-linux-security/?utm_source=ART&utm_medium=ART&utm_campaign=September_Uptycs_Webinar>). Your top takeaway will be a Linux roadmap to getting the basics right! [**REGISTER NOW**](<https://threatpost.com/webinars/4-golden-rules-linux-security/?utm_source=ART&utm_medium=ART&utm_campaign=September_Uptycs_Webinar>) and join the **LIVE event on Sept. 29 at Noon EST**. Joining Threatpost is Uptycs\u2019 Ben Montour and Rishi Kant who will spell out Linux security best practices and take your most pressing questions in real time._\n", "published": "2021-09-24T11:29:27", "modified": "2021-09-24T11:29:27", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://threatpost.com/apple-patches-zero-days-attack/174988/", "reporter": "Elizabeth Montalbano", "references": ["https://support.apple.com/en-us/HT212825", "https://twitter.com/ShaneHuntley/status/1441102086385455112?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1441102086385455112%7Ctwgr%5E%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.theregister.com%2F2021%2F09%2F24%2Fapple_zero_day%2F", "https://support.apple.com/en-us/HT212824", "https://threatpost.com/apple-emergency-fix-nso-zero-click-zero-day/169416/", "https://threatpost.com/nso-group-data-pegasus/167897/", "https://threatpost.com/unpatched-apple-zero-day-code-execution/174915/", "https://threatpost.com/webinars/4-golden-rules-linux-security/?utm_source=ART&utm_medium=ART&utm_campaign=September_Uptycs_Webinar", "https://threatpost.com/webinars/4-golden-rules-linux-security/?utm_source=ART&utm_medium=ART&utm_campaign=September_Uptycs_Webinar", "https://threatpost.com/webinars/4-golden-rules-linux-security/?utm_source=ART&utm_medium=ART&utm_campaign=September_Uptycs_Webinar"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-24T11:31:22", "history": [], "viewCount": 47, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771"]}, {"type": "cve", "idList": ["CVE-2021-30869", "CVE-2021-30858", "CVE-2021-30860"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:6A9CD6F085628D08978727C0FF597535", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212805.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "threatpost", "idList": ["THREATPOST:D47EC7AA55BFFEE10B4A8D6388B0A4BE", "THREATPOST:47DDF262A0C45D40EFEC1CB3866963FD", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-24T11:31:22", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-09-24T11:31:22", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.threatpost.ThreatpostBulletin", "_object_types": ["robots.models.threatpost.ThreatpostBulletin", "robots.models.base.Bulletin"]}, {"id": "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "hash": "647128721e7eed1c156f43e32118086c", "type": "threatpost", "bulletinFamily": "info", "title": "Apple Issues Emergency Fix for NSO Zero-Click Zero Day", "description": "Apple users should immediately update all their devices \u2013 iPhones, iPads, Macs and Apple Watches \u2013 to install an emergency patch for a zero-click zero-day exploited by NSO Group to install spyware.\n\nThe [security updates](<https://support.apple.com/en-us/HT201222>), pushed out by Apple on Monday, include [iOS 14.8](<https://support.apple.com/en-us/HT212807>) for iPhones and iPads, as well as new updates for Apple Watch and macOS. The patches will fix at least one vulnerability that the tech behemoth said \u201cmay have been actively exploited.\u201d\n\nCitizen Lab first [discovered](<https://threatpost.com/pegasus-spyware-uses-iphone-zero-click-imessage-zero-day/168899/>) the never-before-seen, zero-click exploit, which it detected targeting iMessaging, last month. It\u2019s allegedly been used to illegally spy on Bahraini activists with NSO Group\u2019s Pegasus spyware, according to the cybersecurity watchdog.\n\n[](<https://threatpost.com/infosec-insider-subscription-page/?utm_source=ART&utm_medium=ART&utm_campaign=InfosecInsiders_Newsletter_Promo/>)\n\nThe digital researchers dubbed the new iMessaging exploit ForcedEntry.\n\nCitizen Group said in August that they had identified nine Bahraini activists whose iPhones were inflicted with Pegasus spyware between June 2020 and February 2021. Some of the activists\u2019 phones suffered zero-click iMessage attacks that, besides ForcedEntry, also included [the 2020 KISMET exploit](<https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/>).\n\nThe activists included three members of [Waad](<https://www.aldemokrati.org/>) (a secular Bahraini political society), three members of the [Bahrain Center for Human Rights](<https://bahrainrights.net/>), two exiled Bahraini dissidents, and one member of [Al Wefaq](<https://en.wikipedia.org/wiki/Al_Wefaq>) (a Shiite Bahraini political society), Citizen Lab wrote.\n\nThe ForcedEntry exploit was particularly notable in that it was successfully deployed against the latest iOS versions \u2013 14.4 & 14.6 \u2013 blowing past Apple\u2019s new BlastDoor sandboxing feature to install spyware on the iPhones of the Bahraini activists.\n\nCitizen Lab first observed NSO Group deploying ForcedEntry in February 2021. Apple had just [introduced BlastDoor](<https://threatpost.com/apple-ios-imessage-blastdoor/163479/>), a structural improvement in iOS 14 meant to block message-based, zero-click exploits like these NSO Group-associated attacks \u2013 the month before. BlastDoor was supposed to prevent this type of Pegasus attack by acting as what Google Project Zero\u2019s Samuel Gro\u00df [called](<https://googleprojectzero.blogspot.com/2021/01/a-look-at-imessage-in-ios-14.html>) a \u201ctightly sandboxed\u201d service responsible for \u201calmost all\u201d of the parsing of untrusted data in iMessages.\n\nIn a [post](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>) on Monday, Citizen Lab researchers said that in March 2021, they had examined the phone of a Saudi activist who requested anonymity and determined that the phone had been infected with NSO Group\u2019s Pegasus spyware. Last Tuesday, Sept. 7, Citizen Lab forwarded artifacts from two types of crashes on another phone that had been infected with Pegasus, suspecting that both infections showed parts of the ForcedEntry exploit chain.\n\nCitizen Lab forwarded the artifacts to Apple on Tuesday, Sept. 7. On Monday, Sept. 13, Apple confirmed that the files included a zero-day exploit against iOS and MacOS. Apple has designated the ForcedEntry exploit CVE-2021-30860: an as-yet-unrated flaw that Apple describes as \u201cprocessing a maliciously crafted PDF may lead to arbitrary code execution.\u201d\n\n## Sniffing out NSO Group\u2019s Tracks\n\nCitizen Lab described several distinct elements that gives researchers high confidence that the exploit can be tied to the secretive Israeli spyware maker [NSO Group](<https://threatpost.com/nso-group-data-pegasus/167897/>), including a forensic artifact called CascadeFail.\n\nCascadeFail is a bug whereby \u201cevidence is incompletely deleted from the phone\u2019s DataUsage.sqlite file,\u201d according to Citizen Lab. In CascadeFail, \u201can entry from the file\u2019s ZPROCESS table is deleted, but not entries in the ZLIVEUSAGE table that refer to the deleted ZPROCESS entry,\u201d they described.\n\nThat has NSO Group\u2019s fingerprints, they said: \u201cWe have only ever seen this type of incomplete deletion associated with NSO Group\u2019s Pegasus spyware, and we believe that the bug is distinctive enough to point back to NSO.\u201d\n\nAnother telltale sign: multiple process names installed by the ForcedEntry exploit, including the name \u201csetframed\u201d. That process name was used in an attack with NSO Group\u2019s Pegasus spyware on an [Al Jazeera journalist](<https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/>) in July 2020, according to Citizen Lab: a detail that the watchdog didn\u2019t reveal at the time.\n\nZero click remote exploits such as the novel method used by Pegasus spyware to invisibly infect an Apple device without the victim\u2019s knowledge or the need for the victim to click on anything at all were used to infect one victim for as long as six months. They\u2019re pure gold to governments, mercenaries and criminals who want to secretly surveil targets\u2019 devices without being detected.\n\nPegasus is a powerful spyware: it can turn on a target\u2019s camera and microphone so as to record messages, texts, emails, and calls, even if they\u2019re sent via encrypted messaging apps such as [Signal](<https://threatpost.com/google-research-pinpoints-security-soft-spot-in-multiple-chat-platforms/163175/>).\n\n## Pegasus\u2019s Threadbare Narrative\n\nNSO has long maintained that it only sells its spyware to a handful of intelligence communities within countries that have been thoroughly vetted for human rights violations. The company has repeatedly tried to keep up that narrative, taking the tactic of questioning Citizen Lab\u2019s methods and motives.\n\nBut, as pointed out by Hank Schless, Senior Manager of security solutions at endpoint-to-cloud security company Lookout, the narrative is now pretty threadbare. \u201cThe recent exposure of 50,000 phone numbers linked to targets of NSO Group customers was all people needed to see right through what NSO claims,\u201d he told Threatpost on Monday.\n\n\u201cSince Lookout and The Citizen Lab first discovered Pegasus back in 2016, it has continued to evolve and take on new capabilities,\u201d he elaborated. \u201cIt can now be deployed as a zero-click exploit, which means that the target user doesn\u2019t even have to tap a malicious link for the surveillanceware to be installed.\n\nWhile the malware has adjusted its delivery methods, the basic exploit chain remains the same, Schless continued. \u201cPegasus is delivered via a malicious link that\u2019s been socially engineered to the target, the vulnerability is exploited and the device is compromised, then the malware communicated back to a command-and-control (C2) server that gives the attacker free reign over the device. Many apps will automatically create a preview or cache of links in order to improve the user experience. Pegasus takes advantage of this functionality to silently infect the device.\u201d\n\nSchless said that this is an example of how important it is for both individuals and enterprise organizations to have visibility into the risks their mobile devices present, Pegasus being just onei \u201cextreme, but easily understandable example.\n\n\u201cThere are countless pieces of malware out there that can easily exploit known device and software vulnerabilities to gain access to your most sensitive data,\u201d he continued. \u201cFrom an enterprise perspective, leaving mobile devices out of the greater security strategy can represent a major gap in the ability to protect the entire infrastructure from malicious actors. Once the attacker has control of a mobile device or even compromises the user\u2019s credentials, they have free access to your entire infrastructure. Once they enter your cloud or on-prem apps, they can move laterally and identify sensitive assets to encrypt for a ransomware attack or exfiltrate to sell to the highest bidder.\u201d\n\nKevin Dunne, president at unified access orchestration provider Pathlock, noted that the Pegasus infections point to the need for businesses to look beyond securing servers and workstations as primary targets for cyberattacks and espionage. \u201cMobile devices are now used broadly and contain sensitive information that needs to be protected,\u201d he explained.\n\nTo protect themselves against spyware, businesses should look at their mobile device security strategy, Dunne said \u2013 particularly when threats come in forms that are far more insidious than suspicious SMS messages or phishy links that security teams can train users to avoid.\n\n\u201cSpyware attackers have now engineered zero click attacks which are able to get full access to a phone\u2019s data and microphone/camera by using vulnerabilities in third party apps or even built-in applications,\u201d Dunne said. \u201cOrganizations need to make sure they have control over what applications users download on to their phones, and can ensure they are up to date so any vulnerabilities are patched.\u201d\n\n**It\u2019s time to evolve threat hunting into a pursuit of adversaries. **[**JOIN**](<https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar>)** Threatpost and Cybersixgill for **[**Threat Hunting to Catch Adversaries, Not Just Stop Attacks**](<https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar>)** and get a guided tour of the dark web and learn how to track threat actors before their next attack. **[**REGISTER NOW**](<https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar>)** for the LIVE discussion on September 22 at 2 PM EST with Cybersixgill\u2019s Sumukh Tendulkar and Edan Cohen, along with researcher and vCISO Chris Roberts and Threatpost host Becky Bracken.**\n", "published": "2021-09-13T22:10:15", "modified": "2021-09-13T22:10:15", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://threatpost.com/apple-emergency-fix-nso-zero-click-zero-day/169416/", "reporter": "Lisa Vaas", "references": ["https://support.apple.com/en-us/HT201222", "https://support.apple.com/en-us/HT212807", "https://threatpost.com/pegasus-spyware-uses-iphone-zero-click-imessage-zero-day/168899/", "https://threatpost.com/infosec-insider-subscription-page/?utm_source=ART&utm_medium=ART&utm_campaign=InfosecInsiders_Newsletter_Promo/", "https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/", "https://www.aldemokrati.org/", "https://bahrainrights.net/", "https://en.wikipedia.org/wiki/Al_Wefaq", "https://threatpost.com/apple-ios-imessage-blastdoor/163479/", "https://googleprojectzero.blogspot.com/2021/01/a-look-at-imessage-in-ios-14.html", "https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/", "https://threatpost.com/nso-group-data-pegasus/167897/", "https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/", "https://threatpost.com/google-research-pinpoints-security-soft-spot-in-multiple-chat-platforms/163175/", "https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar", "https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar", "https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar"], "cvelist": ["CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-15T07:42:46", "history": [{"bulletin": {"id": "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "hash": "8b1f6c638537b40355819ae4953d472b", "type": "threatpost", "bulletinFamily": "info", "title": "Apple Issues Emergency Fix for NSO Zero-Click Zero Day", "description": "Apple users should immediately update all their devices \u2013 iPhones, iPads, Macs and Apple Watches \u2013 to install an emergency patch for a zero-click zero-day exploited by NSO Group to install spyware.\n\nThe [security updates](<https://support.apple.com/en-us/HT201222>), pushed out by Apple on Monday, include [iOS 14.8](<https://support.apple.com/en-us/HT212807>) for iPhones and iPads, as well as new updates for Apple Watch and macOS. The patches will fix at least one vulnerability that the tech behemoth said \u201cmay have been actively exploited.\u201d\n\nCitizen Lab first [discovered](<https://threatpost.com/pegasus-spyware-uses-iphone-zero-click-imessage-zero-day/168899/>) the never-before-seen, zero-click exploit, which it detected targeting iMessaging, last month. It\u2019s allegedly been used to illegally spy on Bahraini activists with NSO Group\u2019s Pegasus spyware, according to the cybersecurity watchdog.\n\n[](<https://threatpost.com/infosec-insider-subscription-page/?utm_source=ART&utm_medium=ART&utm_campaign=InfosecInsiders_Newsletter_Promo/>)\n\nThe digital researchers dubbed the new iMessaging exploit ForcedEntry.\n\nCitizen Group said in August that they had identified nine Bahraini activists whose iPhones were inflicted with Pegasus spyware between June 2020 and February 2021. Some of the activists\u2019 phones suffered zero-click iMessage attacks that, besides ForcedEntry, also included [the 2020 KISMET exploit](<https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/>).\n\nThe activists included three members of [Waad](<https://www.aldemokrati.org/>) (a secular Bahraini political society), three members of the [Bahrain Center for Human Rights](<https://bahrainrights.net/>), two exiled Bahraini dissidents, and one member of [Al Wefaq](<https://en.wikipedia.org/wiki/Al_Wefaq>) (a Shiite Bahraini political society), Citizen Lab wrote.\n\nThe ForcedEntry exploit was particularly notable in that it was successfully deployed against the latest iOS versions \u2013 14.4 & 14.6 \u2013 blowing past Apple\u2019s new BlastDoor sandboxing feature to install spyware on the iPhones of the Bahraini activists.\n\nCitizen Lab first observed NSO Group deploying ForcedEntry in February 2021. Apple had just [introduced BlastDoor](<https://threatpost.com/apple-ios-imessage-blastdoor/163479/>), a structural improvement in iOS 14 meant to block message-based, zero-click exploits like these NSO Group-associated attacks \u2013 the month before. BlastDoor was supposed to prevent this type of Pegasus attack by acting as what Google Project Zero\u2019s Samuel Gro\u00df [called](<https://googleprojectzero.blogspot.com/2021/01/a-look-at-imessage-in-ios-14.html>) a \u201ctightly sandboxed\u201d service responsible for \u201calmost all\u201d of the parsing of untrusted data in iMessages.\n\nIn a [post](<https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/>) on Monday, Citizen Lab researchers said that in March 2021, they had examined the phone of a Saudi activist who requested anonymity and determined that the phone had been infected with NSO Group\u2019s Pegasus spyware. Last Tuesday, Sept. 7, Citizen Lab forwarded artifacts from two types of crashes on another phone that had been infected with Pegasus, suspecting that both infections showed parts of the ForcedEntry exploit chain.\n\nCitizen Lab forwarded the artifacts to Apple on Tuesday, Sept. 7. On Monday, Sept. 13, Apple confirmed that the files included a zero-day exploit against iOS and MacOS. Apple has designated the ForcedEntry exploit CVE-2021-30860: an as-yet-unrated flaw that Apple describes as \u201cprocessing a maliciously crafted PDF may lead to arbitrary code execution.\u201d\n\n## Sniffing out NSO Group\u2019s Tracks\n\nCitizen Lab described several distinct elements that gives researchers high confidence that the exploit can be tied to the secretive Israeli spyware maker [NSO Group](<https://threatpost.com/nso-group-data-pegasus/167897/>), including a forensic artifact called CascadeFail.\n\nCascadeFail is a bug whereby \u201cevidence is incompletely deleted from the phone\u2019s DataUsage.sqlite file,\u201d according to Citizen Lab. In CascadeFail, \u201can entry from the file\u2019s ZPROCESS table is deleted, but not entries in the ZLIVEUSAGE table that refer to the deleted ZPROCESS entry,\u201d they described.\n\nThat has NSO Group\u2019s fingerprints, they said: \u201cWe have only ever seen this type of incomplete deletion associated with NSO Group\u2019s Pegasus spyware, and we believe that the bug is distinctive enough to point back to NSO.\u201d\n\nAnother telltale sign: multiple process names installed by the ForcedEntry exploit, including the name \u201csetframed\u201d. That process name was used in an attack with NSO Group\u2019s Pegasus spyware on an [Al Jazeera journalist](<https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/>) in July 2020, according to Citizen Lab: a detail that the watchdog didn\u2019t reveal at the time.\n\nZero click remote exploits such as the novel method used by Pegasus spyware to invisibly infect an Apple device without the victim\u2019s knowledge or the need for the victim to click on anything at all were used to infect one victim for as long as six months. They\u2019re pure gold to governments, mercenaries and criminals who want to secretly surveil targets\u2019 devices without being detected.\n\nPegasus is a powerful spyware: it can turn on a target\u2019s camera and microphone so as to record messages, texts, emails, and calls, even if they\u2019re sent via encrypted messaging apps such as [Signal](<https://threatpost.com/google-research-pinpoints-security-soft-spot-in-multiple-chat-platforms/163175/>).\n\n## Pegasus\u2019s Threadbare Narrative\n\nNSO has long maintained that it only sells its spyware to a handful of intelligence communities within countries that have been thoroughly vetted for human rights violations. The company has repeatedly tried to keep up that narrative, taking the tactic of questioning Citizen Lab\u2019s methods and motives.\n\nBut, as pointed out by Hank Schless, Senior Manager of security solutions at endpoint-to-cloud security company Lookout, the narrative is now pretty threadbare. \u201cThe recent exposure of 50,000 phone numbers linked to targets of NSO Group customers was all people needed to see right through what NSO claims,\u201d he told Threatpost on Monday.\n\n\u201cSince Lookout and The Citizen Lab first discovered Pegasus back in 2016, it has continued to evolve and take on new capabilities,\u201d he elaborated. \u201cIt can now be deployed as a zero-click exploit, which means that the target user doesn\u2019t even have to tap a malicious link for the surveillanceware to be installed.\n\nWhile the malware has adjusted its delivery methods, the basic exploit chain remains the same, Schless continued. \u201cPegasus is delivered via a malicious link that\u2019s been socially engineered to the target, the vulnerability is exploited and the device is compromised, then the malware communicated back to a command-and-control (C2) server that gives the attacker free reign over the device. Many apps will automatically create a preview or cache of links in order to improve the user experience. Pegasus takes advantage of this functionality to silently infect the device.\u201d\n\nSchless said that this is an example of how important it is for both individuals and enterprise organizations to have visibility into the risks their mobile devices present, Pegasus being just onei \u201cextreme, but easily understandable example.\n\n\u201cThere are countless pieces of malware out there that can easily exploit known device and software vulnerabilities to gain access to your most sensitive data,\u201d he continued. \u201cFrom an enterprise perspective, leaving mobile devices out of the greater security strategy can represent a major gap in the ability to protect the entire infrastructure from malicious actors. Once the attacker has control of a mobile device or even compromises the user\u2019s credentials, they have free access to your entire infrastructure. Once they enter your cloud or on-prem apps, they can move laterally and identify sensitive assets to encrypt for a ransomware attack or exfiltrate to sell to the highest bidder.\u201d\n\nKevin Dunne, president at unified access orchestration provider Pathlock, noted that the Pegasus infections point to the need for businesses to look beyond securing servers and workstations as primary targets for cyberattacks and espionage. \u201cMobile devices are now used broadly and contain sensitive information that needs to be protected,\u201d he explained.\n\nTo protect themselves against spyware, businesses should look at their mobile device security strategy, Dunne said \u2013 particularly when threats come in forms that are far more insidious than suspicious SMS messages or phishy links that security teams can train users to avoid.\n\n\u201cSpyware attackers have now engineered zero click attacks which are able to get full access to a phone\u2019s data and microphone/camera by using vulnerabilities in third party apps or even built-in applications,\u201d Dunne said. \u201cOrganizations need to make sure they have control over what applications users download on to their phones, and can ensure they are up to date so any vulnerabilities are patched.\u201d\n\n**It\u2019s time to evolve threat hunting into a pursuit of adversaries. **[**JOIN**](<https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar>)** Threatpost and Cybersixgill for **[**Threat Hunting to Catch Adversaries, Not Just Stop Attacks**](<https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar>)** and get a guided tour of the dark web and learn how to track threat actors before their next attack. **[**REGISTER NOW**](<https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar>)** for the LIVE discussion on September 22 at 2 PM EST with Cybersixgill\u2019s Sumukh Tendulkar and Edan Cohen, along with researcher and vCISO Chris Roberts and Threatpost host Becky Bracken.**\n", "published": "2021-09-13T22:10:15", "modified": "2021-09-13T22:10:15", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://threatpost.com/apple-emergency-fix-nso-zero-click-zero-day/169416/", "reporter": "Lisa Vaas", "references": ["https://support.apple.com/en-us/HT201222", "https://support.apple.com/en-us/HT212807", "https://threatpost.com/pegasus-spyware-uses-iphone-zero-click-imessage-zero-day/168899/", "https://threatpost.com/infosec-insider-subscription-page/?utm_source=ART&utm_medium=ART&utm_campaign=InfosecInsiders_Newsletter_Promo/", "https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/", "https://www.aldemokrati.org/", "https://bahrainrights.net/", "https://en.wikipedia.org/wiki/Al_Wefaq", "https://threatpost.com/apple-ios-imessage-blastdoor/163479/", "https://googleprojectzero.blogspot.com/2021/01/a-look-at-imessage-in-ios-14.html", "https://citizenlab.ca/2021/09/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/", "https://threatpost.com/nso-group-data-pegasus/167897/", "https://threatpost.com/zero-click-apple-zero-day-pegasus-spy-attack/162515/", "https://threatpost.com/google-research-pinpoints-security-soft-spot-in-multiple-chat-platforms/163175/", "https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar", "https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar", "https://threatpost.com/webinars/threat-hunting-catch-adversaries/?utm_source=ART&utm_medium=ART&utm_campaign=September_Cybersixgill_Webinar"], "cvelist": ["CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-13T22:23:18", "history": [], "viewCount": 54, "enchantments": {}, "objectVersion": "1.6"}, "lastseen": "2021-09-13T22:23:18", "differentElements": ["cvss"], "edition": 1}], "viewCount": 61, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30860"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN"]}, {"type": "threatpost", "idList": ["THREATPOST:0785609A81C7A6CC12A15680745B92C0", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:995B1096EAAC4A4482E6BA71776288F1", "THREATPOST:7B467F3D352FC85E9F63E65E9C6BC6BB", "THREATPOST:D47EC7AA55BFFEE10B4A8D6388B0A4BE", "THREATPOST:EEA73F5723B5772EEF33792AEFD6868A"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}, {"type": "googleprojectzero", "idList": ["GOOGLEPROJECTZERO:07F1D531E4F35AD1F98080F7AC31AA7D"]}, {"type": "apple", "idList": ["APPLE:B9B20A47252B46B5523401A12BFE03B3", "APPLE:8FD7AEB23933D85EE69AC12E78C61047", "APPLE:26C36A106263A094CCD2C0719C890E96", "APPLE:89861DA71DDD36B8AE0F5BFD245CA715", "APPLE:FD264D87BAFB1F61EA0F916A10C184DF", "APPLE:99264BBD02673CF1A5BD1F2971DF24AC", "APPLE:BEF29044688160BB997E6A04A1810D9C", "APPLE:8E2DBBB775EAF9EB0E77728F1F327519", "APPLE:D6FFE312C543C07E83B2A006624D4484", "APPLE:BF63E0940D677DE6F4EA077CCBC8E3D4", "APPLE:CD72329F98AF4F612400C211AE4DE5CC", "APPLE:C50B697E972C6E21765EAA60E58C7164", "APPLE:37F5E5B333A3674CD65B7E1287333A9E", "APPLE:B3381378B2D293A36BD1738ADC2FF0EA", "APPLE:083507BEBDEC8A0954D205E0ADD992DE", "APPLE:7440F921D6E435C184D04D7BBB1C792F", "APPLE:815274577073D1B995BDF8EABBECA8B3", "APPLE:644500C0206E86708DC72EEBB59BF5EC", "APPLE:A81762EC72891DE2E2EC4EDE80EB0AEC", "APPLE:FC8342DFA1FB389BFF63707187601E04", "APPLE:0536CA1502248219C54E9CDB47CB476A", "APPLE:83954851679CA201EF1EDF83CE5D2FB9", "APPLE:0FDABBE26206F0203F18954597CC1A5D", "APPLE:B71AB19607886631A8390750EA7CCE3F", "APPLE:3B51A3793E650DEB4D5A524AEB10939D", "APPLE:C6B3A88CDD73B885B12A7090E29D430A", "APPLE:DA6A0A4635C393E244ADA3BDE050BFE1", "APPLE:B024BD5A4A1BC1AB787EB653885921E7", "APPLE:9A1C80AF038E85E8590D4B815BA273FD", "APPLE:A995413BBAE0C44CFCCE994906C6A7FA", "APPLE:D842C156864A70351F1DAF73F853B39E", "APPLE:B930D70697973AFE8560BB5CB5C8FF7E", "APPLE:7D85C3857A518CC0896E1AC4FC721A5F", "APPLE:01F01DC42D3C846351C9391E48A3A016", "APPLE:A0D2512CFF25D0D5D3BCE389FDB19F72", "APPLE:DD06626CF4C4BC3354ACDF2F54357778", "APPLE:00227F7C8FECB8511DEA87CEE1A35651", "APPLE:BCCCAE11F083D3D4908149AD32040F19", "APPLE:1C16D7507A975B0063CF2C60AFABD796", "APPLE:FE3D63232171294398F45858A10B5295", "APPLE:FA56DF7B2D68C4F8B67EE47903C325FC", "APPLE:60BFB2B2ABBB461BE6997F0ACF5B6660", "APPLE:3B8870F50950E87AEF0659EF5C65CFB2", "APPLE:0474FDB2C3BAED2BEB8F3F589A9A751B", "APPLE:80AF69490F769A089C16F62E11014AFD", "APPLE:913B7B79E4560DB158829B9D29B2539D", "APPLE:A0476A092DA4082BF1935886E3AAC659", "APPLE:DE4DB38835B966AACCBFDA230F2290D0", "APPLE:1BAEE8F17DD7D2B63370193032CB0611", "APPLE:43A82761AF2332E4585261BA13AEFC4C", "APPLE:7EC62CB7770B86C6FBAD6DBD45DFEBDB", "APPLE:12887AB5BB71C26CA347DA603F2A38E5", "APPLE:AA82E5B3EBE5675FCCFBBBEE9BFD411D", "APPLE:93C3C089A84DF055788C6DF8D286780E", "APPLE:F0FD4AF9E934E41AE6B540A3D8BD18F2", "APPLE:ACE092CEDA446FEA9C5C469D75279A62", "APPLE:8B4FE732ABB73A15CDDCD6E8294E3EF8", "APPLE:00136C664E46E49235D7BEB52F02D4CB", "APPLE:DAC745B8C02D20D12F100A493F79A2C5", "APPLE:8B25F57269F562980EF0ED157CF784AD", "APPLE:BD4A974F6804F04E071FA17C0189F1EB", "APPLE:B48082D98B6BA029A905A36AB5B5E3F5", "APPLE:6719BBA2C54C882380F2507C6DB8B594", "APPLE:083455936A7BFF0A7723E989B92D241D", "APPLE:8AE775955605BF8E8F9449AD0B7FAD96", "APPLE:9A1CF1662DFE33B08BD0240BEB4B2AC9", "APPLE:25A40F47C0600E8BF083E9F8CF4D02B3", "APPLE:D1CDEB8752AB6C8F5120085F64A20A9D", "APPLE:649EC14F69D11DE4A4E4CC7FDD2AE31D", "APPLE:B6B88DE7A691BF48D70E3F17C90B66DC", "APPLE:A45EF6A390F7F91AE1E0B31A361E1EA5", "APPLE:4DBBB66883DC836291AECACDF707050A", "APPLE:4DC59130923980C324535772E9C08242", "APPLE:737483D7FFBE6C182CBD53B150D149C1", "APPLE:62DFB1CE05BA14AE0AFC0750696284DD", "APPLE:DC836966564410BD83E958AC96F8DB12", "APPLE:C576D3548381302A5BCBE22EF67C0131"]}], "modified": "2021-09-15T07:42:46", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-09-15T07:42:46", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.threatpost.ThreatpostBulletin", "_object_types": ["robots.models.threatpost.ThreatpostBulletin", "robots.models.base.Bulletin"]}], "nessus": [{"id": "APPLE_IOS_1255_CHECK.NBIN", "hash": "fe29450cb92677662d0ec9eac7db65d9", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 12.5.5 Multiple Vulnerabilities (HT212824)", "description": "The version of Apple iOS running on the mobile device is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30860)\n\n - A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\n - Incorrect state handling lead to a type confusing issue that allows a malicious application to execute arbitrary code with kernel privileges. (CVE-2021-30869)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-24T00:00:00", "modified": "2021-10-21T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153652", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30869", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-10-23T23:35:21", "history": [{"bulletin": {"id": "APPLE_IOS_1255_CHECK.NBIN", "hash": "d6442d596e17dd796c69bef35b9e4cef", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 12.5.5 Multiple Vulnerabilities (HT212824)", "description": "The version of Apple iOS running on the mobile device is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30860)\n\n - A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\n - Incorrect state handling lead to a type confusing issue that allows a malicious application to execute arbitrary code with kernel privileges. (CVE-2021-30869)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-24T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153652", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30869"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-25T11:45:20", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "thn", "idList": ["THN:6A9CD6F085628D08978727C0FF597535", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-25T11:45:20", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-25T11:45:20", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153652", "sourceData": "Binary data apple_ios_1255_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 12.5.5 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-23T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-25T11:45:20", "differentElements": ["vpr"], "edition": 1}, {"bulletin": {"id": "APPLE_IOS_1255_CHECK.NBIN", "hash": "9d6fde16ccea7d07762174cb1159c6a3", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 12.5.5 Multiple Vulnerabilities (HT212824)", "description": "The version of Apple iOS running on the mobile device is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30860)\n\n - A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\n - Incorrect state handling lead to a type confusing issue that allows a malicious application to execute arbitrary code with kernel privileges. (CVE-2021-30869)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-24T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153652", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30869", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-09-30T00:03:16", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:6A9CD6F085628D08978727C0FF597535", "THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL", "701363.PASL", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212805.NASL", "OPENSUSE-2021-3353.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3282-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "UBUNTU_USN-5087-1.NASL", "MACOS_HT212825.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-30T00:03:16", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-09-30T00:03:16", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153652", "sourceData": "Binary data apple_ios_1255_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 12.5.5 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.8"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-23T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-30T00:03:16", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "APPLE_IOS_1255_CHECK.NBIN", "hash": "56e58588dcd82ccf440f0d918b585be2", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 12.5.5 Multiple Vulnerabilities (HT212824)", "description": "The version of Apple iOS running on the mobile device is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30860)\n\n - A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\n - Incorrect state handling lead to a type confusing issue that allows a malicious application to execute arbitrary code with kernel privileges. (CVE-2021-30869)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-24T00:00:00", "modified": "2021-10-14T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153652", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30869", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-10-15T00:21:24", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:6A9CD6F085628D08978727C0FF597535", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "UBUNTU_USN-5087-1.NASL", "SUSE_SU-2021-3353-1.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3282-1.NASL", "701363.PASL", "DEBIAN_DSA-4976.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212805.NASL", "MACOS_HT212804.NASL", "OPENSUSE-2021-3353.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-10-15T00:21:24", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-10-15T00:21:24", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153652", "sourceData": "Binary data apple_ios_1255_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 12.5.5 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.8"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-23T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-15T00:21:24", "differentElements": ["vpr"], "edition": 3}, {"bulletin": {"id": "APPLE_IOS_1255_CHECK.NBIN", "hash": "285f3f1f393e6d70361973fb742968b0", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 12.5.5 Multiple Vulnerabilities (HT212824)", "description": "The version of Apple iOS running on the mobile device is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30860)\n\n - A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\n - Incorrect state handling lead to a type confusing issue that allows a malicious application to execute arbitrary code with kernel privileges. (CVE-2021-30869)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-24T00:00:00", "modified": "2021-10-14T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153652", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30869", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-10-18T23:35:21", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30869", "CVE-2021-30858", "CVE-2021-30860"]}, {"type": "attackerkb", "idList": ["AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:CA974604-20CA-4B73-9BF4-0D9065889771"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C", "THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:6A9CD6F085628D08978727C0FF597535", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "MACOS_HT212805.NASL", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF", "MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-10-18T23:35:21", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-10-18T23:35:21", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153652", "sourceData": "Binary data apple_ios_1255_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 12.5.5 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-23T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-18T23:35:21", "differentElements": ["cvss", "cvssScoreSource", "modified", "nessusSeverity"], "edition": 4}, {"bulletin": {"id": "APPLE_IOS_1255_CHECK.NBIN", "hash": "e03e5973365e645d571fe8503519ea9c", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 12.5.5 Multiple Vulnerabilities (HT212824)", "description": "The version of Apple iOS running on the mobile device is prior to 12.5.5. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30860)\n\n - A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\n - Incorrect state handling lead to a type confusing issue that allows a malicious application to execute arbitrary code with kernel privileges. (CVE-2021-30869)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-24T00:00:00", "modified": "2021-10-21T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153652", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30869"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860", "CVE-2021-30869"], "immutableFields": [], "lastseen": "2021-10-22T11:34:44", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30860", "CVE-2021-30858", "CVE-2021-30869"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:6A9CD6F085628D08978727C0FF597535"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["SUSE_SU-2021-3353-1.NASL", "MACOS_HT212805.NASL", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL", "UBUNTU_USN-5087-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "SUSE_SU-2021-3282-1.NASL", "701363.PASL", "OPENSUSE-2021-3353.NASL", "OPENSUSE-2021-1369.NASL", "DEBIAN_DSA-4975.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3296-1.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-10-22T11:34:44", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-10-22T11:34:44", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153652", "sourceData": "Binary data apple_ios_1255_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 12.5.5 or later", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-30869", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-23T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-22T11:34:44", "differentElements": ["vpr"], "edition": 5}], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "attackerkb", "idList": ["AKB:CA974604-20CA-4B73-9BF4-0D9065889771", "AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504", "AKB:A655707A-D5EC-4F21-AFEE-D9C97837C840"]}, {"type": "cve", "idList": ["CVE-2021-30860", "CVE-2021-30858", "CVE-2021-30869"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:3691EA68445933ED72DD1B52F712F791", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:6A9CD6F085628D08978727C0FF597535"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "nessus", "idList": ["SUSE_SU-2021-3353-1.NASL", "MACOS_HT212805.NASL", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL", "UBUNTU_USN-5087-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "SUSE_SU-2021-3282-1.NASL", "701363.PASL", "OPENSUSE-2021-3353.NASL", "OPENSUSE-2021-1369.NASL", "DEBIAN_DSA-4975.NASL", "MACOS_HT212825.NASL", "SUSE_SU-2021-3296-1.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4", "MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-10-22T11:34:44", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-10-22T11:34:44", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153652", "sourceData": "Binary data apple_ios_1255_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 12.5.5 or later", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-30869", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-23T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "701363.PASL", "hash": "88c02c42f2fac9cbe5a522ca278f2b64", "type": "nessus", "bulletinFamily": "scanner", "title": "Safari < 14.1.2 Vulnerability", "description": "The version of Safari installed on the remote host is prior to 14.1.2. It is, therefore, affected by a vulnerability as referenced in the HT212808 advisory. Note that Nessus Network Monitor has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-13T00:00:00", "modified": "2021-09-13T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nnm/701363", "reporter": "Tenable", "references": ["https://support.apple.com/en-us/HT212808", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-28T11:47:08", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "nessus", "idList": ["OPENSUSE-2021-1369.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3353-1.NASL", "OPENSUSE-2021-3353.NASL", "SUSE_SU-2021-3282-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4975.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-28T11:47:08", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2021-09-28T11:47:08", "rev": 2}}, "objectVersion": "1.6", "pluginID": "701363", "sourceData": "Binary data 701363.pasl", "naslFamily": "Web Clients", "cpe": ["cpe:/a:apple:safari"], "solution": "Upgrade to Safari version 14.1.2 or later.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2021-09-13T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.nessus.NessusBulletin", "robots.models.base.Bulletin"]}, {"id": "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "hash": "41c2224b34f2e508ae9ce18f10b4f3d3", "type": "nessus", "bulletinFamily": "scanner", "title": "FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)", "description": "The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.", "published": "2021-10-01T00:00:00", "modified": "2021-10-05T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153815", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?6dc2b9f9", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://webkitgtk.org/security/WSA-2021-0005.html"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:21", "history": [{"bulletin": {"id": "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "hash": "88b7e268315cf23398f220cc77106779", "type": "nessus", "bulletinFamily": "scanner", "title": "FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)", "description": "The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.", "published": "2021-10-01T00:00:00", "modified": "2021-10-01T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153815", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://webkitgtk.org/security/WSA-2021-0005.html", "http://www.nessus.org/u?6dc2b9f9", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-03T11:57:35", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL", "701363.PASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4975.NASL", "APPLE_IOS_1255_CHECK.NBIN"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-10-03T11:57:35", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-10-03T11:57:35", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2021 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(153815);\n script_version(\"1.1\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/01\");\n\n script_cve_id(\"CVE-2021-30858\");\n\n script_name(english:\"FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead\nto arbitrary code execution.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://webkitgtk.org/security/WSA-2021-0005.html\"\n );\n # https://vuxml.freebsd.org/freebsd/576aa394-1d85-11ec-8b7d-4f5b624574e2.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dc2b9f9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:webkit2-gtk3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"webkit2-gtk3<2.32.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "cpe": ["p-cpe:/a:freebsd:freebsd:webkit2-gtk3", "cpe:/o:freebsd:freebsd"], "solution": "Update the affected package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2021-09-24T00:00:00", "vulnerabilityPublicationDate": "2021-09-20T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-03T11:57:35", "differentElements": ["sourceData"], "edition": 1}, {"bulletin": {"id": "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "hash": "4e57502c13b1725932f86597da6d1dfb", "type": "nessus", "bulletinFamily": "scanner", "title": "FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)", "description": "The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.", "published": "2021-10-01T00:00:00", "modified": "2021-10-01T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153815", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://webkitgtk.org/security/WSA-2021-0005.html", "http://www.nessus.org/u?6dc2b9f9"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-06T00:01:02", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "DEBIAN_DSA-4976.NASL", "DEBIAN_DSA-4975.NASL", "UBUNTU_USN-5087-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "APPLE_IOS_148_CHECK.NBIN", "701363.PASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-10-06T00:01:02", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2021-10-06T00:01:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2021 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(153815);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-30858\");\n\n script_name(english:\"FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead\nto arbitrary code execution.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://webkitgtk.org/security/WSA-2021-0005.html\"\n );\n # https://vuxml.freebsd.org/freebsd/576aa394-1d85-11ec-8b7d-4f5b624574e2.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dc2b9f9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:webkit2-gtk3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"webkit2-gtk3<2.32.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "cpe": ["p-cpe:/a:freebsd:freebsd:webkit2-gtk3", "cpe:/o:freebsd:freebsd"], "solution": "Update the affected package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2021-09-24T00:00:00", "vulnerabilityPublicationDate": "2021-09-20T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-06T00:01:02", "differentElements": ["exploitEase", "modified"], "edition": 2}, {"bulletin": {"id": "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "hash": "5a27369e38a44c25c2d246c8137458d5", "type": "nessus", "bulletinFamily": "scanner", "title": "FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)", "description": "The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.", "published": "2021-10-01T00:00:00", "modified": "2021-10-05T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153815", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?6dc2b9f9", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://webkitgtk.org/security/WSA-2021-0005.html"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-07T00:06:00", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "nessus", "idList": ["MACOS_HT212804.NASL", "SUSE_SU-2021-3296-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "SUSE_SU-2021-3282-1.NASL", "701363.PASL", "UBUNTU_USN-5087-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-07T00:06:00", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-07T00:06:00", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2021 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(153815);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-30858\");\n\n script_name(english:\"FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead\nto arbitrary code execution.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://webkitgtk.org/security/WSA-2021-0005.html\"\n );\n # https://vuxml.freebsd.org/freebsd/576aa394-1d85-11ec-8b7d-4f5b624574e2.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dc2b9f9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:webkit2-gtk3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"webkit2-gtk3<2.32.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "cpe": ["p-cpe:/a:freebsd:freebsd:webkit2-gtk3", "cpe:/o:freebsd:freebsd"], "solution": "Update the affected package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-24T00:00:00", "vulnerabilityPublicationDate": "2021-09-20T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-07T00:06:00", "differentElements": ["cpe", "cvss"], "edition": 3}, {"bulletin": {"id": "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "hash": "27e62de702c361f78f3719c40548f6f1", "type": "nessus", "bulletinFamily": "scanner", "title": "FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)", "description": "The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.", "published": "2021-10-01T00:00:00", "modified": "2021-10-05T00:00:00", "cvss": {"score": 6.8, "vector": "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153815", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?6dc2b9f9", "https://webkitgtk.org/security/WSA-2021-0005.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-14T12:04:22", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "nessus", "idList": ["MACOS_HT212804.NASL", "701363.PASL", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3353-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "OPENSUSE-2021-3353.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3282-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-14T12:04:22", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-14T12:04:22", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2021 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(153815);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-30858\");\n\n script_name(english:\"FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead\nto arbitrary code execution.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://webkitgtk.org/security/WSA-2021-0005.html\"\n );\n # https://vuxml.freebsd.org/freebsd/576aa394-1d85-11ec-8b7d-4f5b624574e2.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dc2b9f9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:webkit2-gtk3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"webkit2-gtk3<2.32.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "cpe": ["cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*", "p-cpe:2.3:a:freebsd:freebsd:webkit2-gtk3:*:*:*:*:*:*:*"], "solution": "Update the affected package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-24T00:00:00", "vulnerabilityPublicationDate": "2021-09-20T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-14T12:04:22", "differentElements": ["cpe", "cvss"], "edition": 4}, {"bulletin": {"id": "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "hash": "5a27369e38a44c25c2d246c8137458d5", "type": "nessus", "bulletinFamily": "scanner", "title": "FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)", "description": "The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution.", "published": "2021-10-01T00:00:00", "modified": "2021-10-05T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153815", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://webkitgtk.org/security/WSA-2021-0005.html", "http://www.nessus.org/u?6dc2b9f9", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-16T11:59:17", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-16T11:59:17", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-16T11:59:17", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2021 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(153815);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-30858\");\n\n script_name(english:\"FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead\nto arbitrary code execution.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://webkitgtk.org/security/WSA-2021-0005.html\"\n );\n # https://vuxml.freebsd.org/freebsd/576aa394-1d85-11ec-8b7d-4f5b624574e2.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dc2b9f9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:webkit2-gtk3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"webkit2-gtk3<2.32.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "cpe": ["p-cpe:/a:freebsd:freebsd:webkit2-gtk3", "cpe:/o:freebsd:freebsd"], "solution": "Update the affected package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-24T00:00:00", "vulnerabilityPublicationDate": "2021-09-20T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-16T11:59:17", "differentElements": ["vpr"], "edition": 5}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-16T11:59:17", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-16T11:59:17", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153815", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2021 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(153815);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-30858\");\n\n script_name(english:\"FreeBSD : webkit2-gtk3 -- multiple vulnerabilities (576aa394-1d85-11ec-8b7d-4f5b624574e2)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The WebKitGTK project reports vulnerabilities :\n\n- CVE-2021-30858: Processing maliciously crafted web content may lead\nto arbitrary code execution.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://webkitgtk.org/security/WSA-2021-0005.html\"\n );\n # https://vuxml.freebsd.org/freebsd/576aa394-1d85-11ec-8b7d-4f5b624574e2.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6dc2b9f9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:webkit2-gtk3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"webkit2-gtk3<2.32.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "FreeBSD Local Security Checks", "cpe": ["p-cpe:/a:freebsd:freebsd:webkit2-gtk3", "cpe:/o:freebsd:freebsd"], "solution": "Update the affected package.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-24T00:00:00", "vulnerabilityPublicationDate": "2021-09-20T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "DEBIAN_DSA-4975.NASL", "hash": "1edf49eb0649d9980720957af34df75d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4975-1 : webkit2gtk - security update", "description": "The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153572", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://packages.debian.org/source/buster/webkit2gtk", "https://security-tracker.debian.org/tracker/source-package/webkit2gtk", "https://packages.debian.org/source/bullseye/webkit2gtk", "https://www.debian.org/security/2021/dsa-4975", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://security-tracker.debian.org/tracker/CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:44", "history": [{"bulletin": {"id": "DEBIAN_DSA-4975.NASL", "hash": "1d957376460ea21a8251e44484b4cc64", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4975-1 : webkit2gtk - security update", "description": "The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153572", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://security-tracker.debian.org/tracker/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://packages.debian.org/source/buster/webkit2gtk", "https://packages.debian.org/source/bullseye/webkit2gtk", "https://www.debian.org/security/2021/dsa-4975", "https://security-tracker.debian.org/tracker/source-package/webkit2gtk"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-23T11:39:39", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-23T11:39:39", "rev": 2}, "score": {"value": 6.8, "vector": "NONE", "modified": "2021-09-23T11:39:39", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153572", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4975. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153572);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/22\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414\");\n\n script_name(english:\"Debian DSA-4975-1 : webkit2gtk - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4975\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/buster/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/webkit2gtk\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(10)\\.[0-9]+|^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 10.0 / 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '10.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb10u1'},\n {'release': '11.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc", "p-cpe:/a:debian:debian_linux:webkit2gtk-driver", "cpe:/o:debian:debian_linux:10.0", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-23T11:39:39", "differentElements": ["modified", "sourceData"], "edition": 1}, {"bulletin": {"id": "DEBIAN_DSA-4975.NASL", "hash": "1edf49eb0649d9980720957af34df75d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4975-1 : webkit2gtk - security update", "description": "The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153572", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://packages.debian.org/source/buster/webkit2gtk", "https://security-tracker.debian.org/tracker/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://www.debian.org/security/2021/dsa-4975", "https://packages.debian.org/source/bullseye/webkit2gtk", "https://security-tracker.debian.org/tracker/source-package/webkit2gtk"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-25T11:43:51", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-25T11:43:51", "rev": 2}, "score": {"value": 6.8, "vector": "NONE", "modified": "2021-09-25T11:43:51", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153572", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4975. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153572);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Debian DSA-4975-1 : webkit2gtk - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4975\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/buster/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/webkit2gtk\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(10)\\.[0-9]+|^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 10.0 / 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '10.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb10u1'},\n {'release': '11.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc", "p-cpe:/a:debian:debian_linux:webkit2gtk-driver", "cpe:/o:debian:debian_linux:10.0", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-25T11:43:51", "differentElements": ["vpr"], "edition": 2}, {"bulletin": {"id": "DEBIAN_DSA-4975.NASL", "hash": "edcfd295de923ae1777b6714be2835ca", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4975-1 : webkit2gtk - security update", "description": "The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153572", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://packages.debian.org/source/bullseye/webkit2gtk", "https://www.debian.org/security/2021/dsa-4975", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://security-tracker.debian.org/tracker/CVE-2021-30858", "https://security-tracker.debian.org/tracker/source-package/webkit2gtk", "https://packages.debian.org/source/buster/webkit2gtk"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-30T00:02:47", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-30T00:02:47", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-09-30T00:02:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153572", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4975. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153572);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Debian DSA-4975-1 : webkit2gtk - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4975\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/buster/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/webkit2gtk\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(10)\\.[0-9]+|^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 10.0 / 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '10.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb10u1'},\n {'release': '11.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc", "p-cpe:/a:debian:debian_linux:webkit2gtk-driver", "cpe:/o:debian:debian_linux:10.0", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-30T00:02:47", "differentElements": ["vpr"], "edition": 3}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-30T00:02:47", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-09-30T00:02:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153572", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4975. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153572);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Debian DSA-4975-1 : webkit2gtk - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4975\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4975\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/buster/webkit2gtk\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/webkit2gtk\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(10)\\.[0-9]+|^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 10.0 / 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '10.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb10u1'},\n {'release': '10.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb10u1'},\n {'release': '11.0', 'prefix': 'gir1.2-javascriptcoregtk-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'gir1.2-webkit2-4.0', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-18', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-bin', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libjavascriptcoregtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-37-gtk2', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwebkit2gtk-4.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'webkit2gtk-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:debian:debian_linux:gir1.2-webkit2-4.0", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:debian:debian_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:debian:debian_linux:libwebkit2gtk-4.0-doc", "p-cpe:/a:debian:debian_linux:webkit2gtk-driver", "cpe:/o:debian:debian_linux:10.0", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the webkit2gtk packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "UBUNTU_USN-5087-1.NASL", "hash": "e26369c6acd5e70209caf069328110d1", "type": "nessus", "bulletinFamily": "scanner", "title": "Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)", "description": "The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153568", "reporter": "Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://ubuntu.com/security/notices/USN-5087-1", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:36:10", "history": [{"bulletin": {"id": "UBUNTU_USN-5087-1.NASL", "hash": "b95ac21f35743de879f16bd794ee6b57", "type": "nessus", "bulletinFamily": "scanner", "title": "Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)", "description": "The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153568", "reporter": "Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://ubuntu.com/security/notices/USN-5087-1"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-23T11:40:05", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL", "DEBIAN_DSA-4975.NASL"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}], "modified": "2021-09-23T11:40:05", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2021-09-23T11:40:05", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153568", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-5087-1. The text\n# itself is copyright (C) Canonical, Inc. See\n# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered\n# trademark of Canonical, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153568);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/22\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"USN\", value:\"5087-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Ubuntu host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced\nin the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://ubuntu.com/security/notices/USN-5087-1\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:20.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(english:\"Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('ubuntu.inc');\ninclude('misc_func.inc');\n\nif ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/Ubuntu/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Ubuntu');\nvar release = chomp(release);\nif (! preg(pattern:\"^(18\\.04|20\\.04)$\", string:release)) audit(AUDIT_OS_NOT, 'Ubuntu 18.04 / 20.04', 'Ubuntu ' + release);\nif ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\n\nvar pkgs = [\n {'osver': '18.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.20.04.1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var osver = NULL;\n var pkgname = NULL;\n var pkgver = NULL;\n if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];\n if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];\n if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];\n if (osver && pkgname && pkgver) {\n if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Ubuntu Local Security Checks", "cpe": ["cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "cpe:/o:canonical:ubuntu_linux:20.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-22T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-23T11:40:05", "differentElements": ["modified", "sourceData"], "edition": 1}, {"bulletin": {"id": "UBUNTU_USN-5087-1.NASL", "hash": "e26369c6acd5e70209caf069328110d1", "type": "nessus", "bulletinFamily": "scanner", "title": "Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)", "description": "The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153568", "reporter": "Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://ubuntu.com/security/notices/USN-5087-1", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-25T11:45:20", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-25T11:45:20", "rev": 2}, "score": {"value": 6.6, "vector": "NONE", "modified": "2021-09-25T11:45:20", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153568", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-5087-1. The text\n# itself is copyright (C) Canonical, Inc. See\n# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered\n# trademark of Canonical, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153568);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"USN\", value:\"5087-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Ubuntu host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced\nin the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://ubuntu.com/security/notices/USN-5087-1\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:20.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(english:\"Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('ubuntu.inc');\ninclude('misc_func.inc');\n\nif ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/Ubuntu/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Ubuntu');\nvar release = chomp(release);\nif (! preg(pattern:\"^(18\\.04|20\\.04)$\", string:release)) audit(AUDIT_OS_NOT, 'Ubuntu 18.04 / 20.04', 'Ubuntu ' + release);\nif ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\n\nvar pkgs = [\n {'osver': '18.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.20.04.1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var osver = NULL;\n var pkgname = NULL;\n var pkgver = NULL;\n if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];\n if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];\n if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];\n if (osver && pkgname && pkgver) {\n if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Ubuntu Local Security Checks", "cpe": ["cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "cpe:/o:canonical:ubuntu_linux:20.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-22T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-25T11:45:20", "differentElements": ["vpr"], "edition": 2}, {"bulletin": {"id": "UBUNTU_USN-5087-1.NASL", "hash": "338c5c1fb26007cdcc0fb16f47272e7a", "type": "nessus", "bulletinFamily": "scanner", "title": "Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)", "description": "The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153568", "reporter": "Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://ubuntu.com/security/notices/USN-5087-1", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-30T00:03:15", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL", "701363.PASL", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3353-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "OPENSUSE-2021-3353.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3282-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-30T00:03:15", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-09-30T00:03:15", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153568", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-5087-1. The text\n# itself is copyright (C) Canonical, Inc. See\n# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered\n# trademark of Canonical, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153568);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"USN\", value:\"5087-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Ubuntu host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced\nin the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://ubuntu.com/security/notices/USN-5087-1\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:20.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(english:\"Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('ubuntu.inc');\ninclude('misc_func.inc');\n\nif ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/Ubuntu/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Ubuntu');\nvar release = chomp(release);\nif (! preg(pattern:\"^(18\\.04|20\\.04)$\", string:release)) audit(AUDIT_OS_NOT, 'Ubuntu 18.04 / 20.04', 'Ubuntu ' + release);\nif ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\n\nvar pkgs = [\n {'osver': '18.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.20.04.1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var osver = NULL;\n var pkgname = NULL;\n var pkgver = NULL;\n if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];\n if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];\n if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];\n if (osver && pkgname && pkgver) {\n if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Ubuntu Local Security Checks", "cpe": ["cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "cpe:/o:canonical:ubuntu_linux:20.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-22T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-30T00:03:15", "differentElements": ["vpr"], "edition": 3}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL", "701363.PASL", "SUSE_SU-2021-3296-1.NASL", "SUSE_SU-2021-3353-1.NASL", "APPLE_IOS_1255_CHECK.NBIN", "OPENSUSE-2021-3353.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3282-1.NASL", "APPLE_IOS_148_CHECK.NBIN", "DEBIAN_DSA-4975.NASL"]}, {"type": "fedora", "idList": ["FEDORA:A5DD43052741", "FEDORA:D55FD30AE7DD"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:BB8CDCFD08801BDD2929E342853D03E9"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-30T00:03:15", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-09-30T00:03:15", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153568", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-5087-1. The text\n# itself is copyright (C) Canonical, Inc. See\n# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered\n# trademark of Canonical, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153568);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"USN\", value:\"5087-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 20.04 LTS : WebKitGTK vulnerabilities (USN-5087-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Ubuntu host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced\nin the USN-5087-1 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://ubuntu.com/security/notices/USN-5087-1\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:20.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_copyright(english:\"Ubuntu Security Notice (C) 2021 Canonical, Inc. / NASL script (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('ubuntu.inc');\ninclude('misc_func.inc');\n\nif ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/Ubuntu/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Ubuntu');\nvar release = chomp(release);\nif (! preg(pattern:\"^(18\\.04|20\\.04)$\", string:release)) audit(AUDIT_OS_NOT, 'Ubuntu 18.04 / 20.04', 'Ubuntu ' + release);\nif ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);\n\n\nvar pkgs = [\n {'osver': '18.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '18.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.18.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-javascriptcoregtk-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'gir1.2-webkit2-4.0', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-18', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-bin', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libjavascriptcoregtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-37-gtk2', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'libwebkit2gtk-4.0-dev', 'pkgver': '2.32.4-0ubuntu0.20.04.1'},\n {'osver': '20.04', 'pkgname': 'webkit2gtk-driver', 'pkgver': '2.32.4-0ubuntu0.20.04.1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var osver = NULL;\n var pkgname = NULL;\n var pkgver = NULL;\n if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];\n if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];\n if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];\n if (osver && pkgname && pkgver) {\n if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'gir1.2-javascriptcoregtk-4.0 / gir1.2-webkit2-4.0 / etc');\n}\n", "naslFamily": "Ubuntu Local Security Checks", "cpe": ["cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "cpe:/o:canonical:ubuntu_linux:20.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-javascriptcoregtk-4.0", "p-cpe:/a:canonical:ubuntu_linux:gir1.2-webkit2-4.0", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-18", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-bin", "p-cpe:/a:canonical:ubuntu_linux:libjavascriptcoregtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-37-gtk2", "p-cpe:/a:canonical:ubuntu_linux:libwebkit2gtk-4.0-dev", "p-cpe:/a:canonical:ubuntu_linux:webkit2gtk-driver"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-22T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "DEBIAN_DSA-4976.NASL", "hash": "e4d40671e3deb7ff570508efed69ea2d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4976-1 : wpewebkit - security update", "description": "The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153570", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://packages.debian.org/source/bullseye/wpewebkit", "https://security-tracker.debian.org/tracker/source-package/wpewebkit", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://www.debian.org/security/2021/dsa-4976", "https://security-tracker.debian.org/tracker/CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:36", "history": [{"bulletin": {"id": "DEBIAN_DSA-4976.NASL", "hash": "18bbfd4c6f0f0959c763fd95f72a46f8", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4976-1 : wpewebkit - security update", "description": "The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-22T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153570", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://security-tracker.debian.org/tracker/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://packages.debian.org/source/bullseye/wpewebkit", "https://www.debian.org/security/2021/dsa-4976", "https://security-tracker.debian.org/tracker/source-package/wpewebkit"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-23T11:40:27", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4975.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-23T11:40:27", "rev": 2}, "score": {"value": 6.9, "vector": "NONE", "modified": "2021-09-23T11:40:27", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153570", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4976. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153570);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/22\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414\");\n\n script_name(english:\"Debian DSA-4976-1 : wpewebkit - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/wpewebkit\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4976\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/wpewebkit\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:wpewebkit-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-3', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'wpewebkit-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libwpewebkit-1.0-3 / libwpewebkit-1.0-dev / libwpewebkit-1.0-doc / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc", "p-cpe:/a:debian:debian_linux:wpewebkit-driver", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-23T11:40:27", "differentElements": ["modified", "sourceData"], "edition": 1}, {"bulletin": {"id": "DEBIAN_DSA-4976.NASL", "hash": "e4d40671e3deb7ff570508efed69ea2d", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4976-1 : wpewebkit - security update", "description": "The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153570", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://packages.debian.org/source/bullseye/wpewebkit", "https://security-tracker.debian.org/tracker/CVE-2021-30858", "https://www.debian.org/security/2021/dsa-4976", "https://security-tracker.debian.org/tracker/source-package/wpewebkit", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-25T11:45:40", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "UBUNTU_USN-5087-1.NASL"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}], "modified": "2021-09-25T11:45:40", "rev": 2}, "score": {"value": 6.9, "vector": "NONE", "modified": "2021-09-25T11:45:40", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153570", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4976. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153570);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Debian DSA-4976-1 : wpewebkit - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/wpewebkit\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4976\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/wpewebkit\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:wpewebkit-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-3', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'wpewebkit-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libwpewebkit-1.0-3 / libwpewebkit-1.0-dev / libwpewebkit-1.0-doc / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc", "p-cpe:/a:debian:debian_linux:wpewebkit-driver", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-25T11:45:40", "differentElements": ["vpr"], "edition": 2}, {"bulletin": {"id": "DEBIAN_DSA-4976.NASL", "hash": "a2a23e2bcbbb288a356697b2712ceccf", "type": "nessus", "bulletinFamily": "scanner", "title": "Debian DSA-4976-1 : wpewebkit - security update", "description": "The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976 advisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-09-22T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153570", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://security-tracker.debian.org/tracker/CVE-2021-30858", "https://packages.debian.org/source/bullseye/wpewebkit", "https://security-tracker.debian.org/tracker/source-package/wpewebkit", "https://www.debian.org/security/2021/dsa-4976"], "cvelist": ["CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-09-29T11:40:35", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-29T11:40:35", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-09-29T11:40:35", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153570", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4976. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153570);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Debian DSA-4976-1 : wpewebkit - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/wpewebkit\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4976\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/wpewebkit\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:wpewebkit-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-3', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'wpewebkit-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libwpewebkit-1.0-3 / libwpewebkit-1.0-dev / libwpewebkit-1.0-doc / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc", "p-cpe:/a:debian:debian_linux:wpewebkit-driver", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-29T11:40:35", "differentElements": ["vpr"], "edition": 3}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-09-29T11:40:35", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2021-09-29T11:40:35", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153570", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory dsa-4976. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153570);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/24\");\n\n script_cve_id(\"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n\n script_name(english:\"Debian DSA-4976-1 : wpewebkit - security update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Debian host is missing a security-related update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4976\nadvisory.\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/source-package/wpewebkit\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.debian.org/security/2021/dsa-4976\");\n script_set_attribute(attribute:\"see_also\", value:\"https://security-tracker.debian.org/tracker/CVE-2021-30858\");\n script_set_attribute(attribute:\"see_also\", value:\"https://packages.debian.org/source/bullseye/wpewebkit\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/08/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/09/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:wpewebkit-driver\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:11.0\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Debian Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('debian_package.inc');\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar release = get_kb_item('Host/Debian/release');\nif ( isnull(release) ) audit(AUDIT_OS_NOT, 'Debian');\nvar release = chomp(release);\nif (! preg(pattern:\"^(11)\\.[0-9]+\", string:release)) audit(AUDIT_OS_NOT, 'Debian 11.0', 'Debian ' + release);\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);\n\nvar pkgs = [\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-3', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-dev', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'libwpewebkit-1.0-doc', 'reference': '2.32.4-1~deb11u1'},\n {'release': '11.0', 'prefix': 'wpewebkit-driver', 'reference': '2.32.4-1~deb11u1'}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var release = NULL;\n var prefix = NULL;\n var reference = NULL;\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (release && prefix && reference) {\n if (deb_check(release:release, prefix:prefix, reference:reference)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : deb_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = deb_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libwpewebkit-1.0-3 / libwpewebkit-1.0-dev / libwpewebkit-1.0-doc / etc');\n}\n", "naslFamily": "Debian Local Security Checks", "cpe": ["p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-3", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-dev", "p-cpe:/a:debian:debian_linux:libwpewebkit-1.0-doc", "p-cpe:/a:debian:debian_linux:wpewebkit-driver", "cpe:/o:debian:debian_linux:11.0"], "solution": "Upgrade the wpewebkit packages.\n\nFor the stable distribution (bullseye), this problem has been fixed in version 2.32.4-1~deb11u1.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-20T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "OPENSUSE-2021-1369.NASL", "hash": "702c25c42ae2631a92361faf264fd3a6", "type": "nessus", "bulletinFamily": "scanner", "title": "openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:1369-1)", "description": "The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1369-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-19T00:00:00", "modified": "2021-10-19T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/154228", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-21806", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://bugzilla.suse.com/1190701", "http://www.nessus.org/u?6ad49bbb", "https://www.suse.com/security/cve/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:34:54", "history": [{"bulletin": {"id": "OPENSUSE-2021-1369.NASL", "hash": "a3ac2acbed4897c3f13f8b1bf305c236", "type": "nessus", "bulletinFamily": "scanner", "title": "openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:1369-1)", "description": "The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1369-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-19T00:00:00", "modified": "2021-10-19T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/154228", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-21806", "http://www.nessus.org/u?6ad49bbb", "https://bugzilla.suse.com/1190701", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://www.suse.com/security/cve/CVE-2021-30858", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-20T12:04:28", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858", "UB:CVE-2021-21806"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858", "RH:CVE-2021-21806"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-21806"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["OPENSUSE-2021-3353.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "SUSE_SU-2021-3296-1.NASL", "701363.PASL", "DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "SUSE_SU-2021-3282-1.NASL", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-20T12:04:28", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-10-20T12:04:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "154228", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# openSUSE Security Update openSUSE-SU-2021:1369-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(154228);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/19\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:1369-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe openSUSE-SU-2021:1369-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/X4HF2CMDLYL7MPNIXI64QMEMC75KZUZA/\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?6ad49bbb\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/19\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit-jsc-4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.2\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/SuSE/release');\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, 'openSUSE');\nvar os_ver = pregmatch(pattern: \"^SUSE([\\d.]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');\nos_ver = os_ver[1];\nif (release !~ \"^(SUSE15\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.2', release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + os_ver, cpu);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libjavascriptcoregtk-4_0-18-32bit-2.32.4-lp152.2.19.1', 'cpu':'x86_64', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-32bit-2.32.4-lp152.2.19.1', 'cpu':'x86_64', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk3-lang-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit-jsc-4-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-devel-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-minibrowser-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var cpu = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (rpm_check(release:release, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libjavascriptcoregtk-4_0-18-32bit / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang", "p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:opensuse:webkit-jsc-4", "p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:opensuse:webkit2gtk3-devel", "p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser", "cpe:/o:novell:opensuse:15.2"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-18T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-20T12:04:28", "differentElements": ["vpr"], "edition": 1}], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-30858", "UB:CVE-2021-21806"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858", "RH:CVE-2021-21806"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-21806"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["OPENSUSE-2021-3353.NASL", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "APPLE_IOS_1255_CHECK.NBIN", "SUSE_SU-2021-3296-1.NASL", "701363.PASL", "DEBIAN_DSA-4975.NASL", "APPLE_IOS_148_CHECK.NBIN", "SUSE_SU-2021-3282-1.NASL", "DEBIAN_DSA-4976.NASL", "UBUNTU_USN-5087-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-20T12:04:28", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-10-20T12:04:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "154228", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# openSUSE Security Update openSUSE-SU-2021:1369-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(154228);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/19\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:1369-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe openSUSE-SU-2021:1369-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/X4HF2CMDLYL7MPNIXI64QMEMC75KZUZA/\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?6ad49bbb\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/19\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit-jsc-4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.2\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/SuSE/release');\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, 'openSUSE');\nvar os_ver = pregmatch(pattern: \"^SUSE([\\d.]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');\nos_ver = os_ver[1];\nif (release !~ \"^(SUSE15\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.2', release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + os_ver, cpu);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libjavascriptcoregtk-4_0-18-32bit-2.32.4-lp152.2.19.1', 'cpu':'x86_64', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-32bit-2.32.4-lp152.2.19.1', 'cpu':'x86_64', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk3-lang-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit-jsc-4-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-devel-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-minibrowser-2.32.4-lp152.2.19.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var cpu = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (rpm_check(release:release, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libjavascriptcoregtk-4_0-18-32bit / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang", "p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:opensuse:webkit-jsc-4", "p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:opensuse:webkit2gtk3-devel", "p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser", "cpe:/o:novell:opensuse:15.2"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-18T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SUSE_SU-2021-3296-1.NASL", "hash": "8d27b8526cd2012af4a386a979a8c69a", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2021:3296-1)", "description": "The remote SUSE Linux SLED12 / SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3296-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-07T00:00:00", "modified": "2021-10-07T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153904", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-21806", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://bugzilla.suse.com/1190701", "http://www.nessus.org/u?de5ca92b", "https://www.suse.com/security/cve/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:13", "history": [{"bulletin": {"id": "SUSE_SU-2021-3296-1.NASL", "hash": "39e5c02fdf4bd8e90e413addea100bb5", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2021:3296-1)", "description": "The remote SUSE Linux SLED12 / SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3296-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-07T00:00:00", "modified": "2021-10-07T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153904", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.suse.com/1190701", "https://www.suse.com/security/cve/CVE-2021-30858", "https://www.suse.com/security/cve/CVE-2021-21806", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "http://www.nessus.org/u?de5ca92b", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-07T23:33:23", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-07T23:33:23", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-07T23:33:23", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153904", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# SUSE update advisory SUSE-SU-2021:3296-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153904);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/07\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"SuSE\", value:\"SUSE-SU-2021:3296-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2021:3296-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SLED12 / SLES12 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the SUSE-SU-2021:3296-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.suse.com/pipermail/sle-security-updates/2021-October/009534.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?de5ca92b\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/07\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nvar os_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED12|SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED12 / SLES12', 'SUSE ' + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE ' + os_ver, cpu);\n\nvar sp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLED12\" && (! preg(pattern:\"^(5)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED12 SP5\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLES12\" && (! preg(pattern:\"^(2|3|4|5)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP2/3/4/5\", os_ver + \" SP\" + sp);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'webkit2gtk3-devel-2.32.4-2.71.2', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'webkit2gtk3-devel-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'2', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'webkit2gtk3-devel-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'}\n];\n\nvar ltss_caveat_required = FALSE;\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var sp = NULL;\n var cpu = NULL;\n var exists_check = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (exists_check) {\n if (!rpm_exists(release:release, rpm:exists_check)) continue;\n if ('ltss' >< tolower(exists_check)) ltss_caveat_required = TRUE;\n }\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n var ltss_plugin_caveat = NULL;\n if(ltss_caveat_required) ltss_plugin_caveat = '\\n' +\n 'NOTE: This vulnerability check contains fixes that apply to\\n' +\n 'packages only available in SUSE Enterprise Linux Server LTSS\\n' +\n 'repositories. Access to these package security updates require\\n' +\n 'a paid SUSE LTSS subscription.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + ltss_plugin_caveat\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang", "p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:suse_linux:webkit2gtk3-devel", "cpe:/o:novell:suse_linux:12"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-06T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-07T23:33:23", "differentElements": ["vpr"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-07T23:33:23", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-07T23:33:23", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153904", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# SUSE update advisory SUSE-SU-2021:3296-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153904);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/07\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"SuSE\", value:\"SUSE-SU-2021:3296-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"SUSE SLED12 / SLES12 Security Update : webkit2gtk3 (SUSE-SU-2021:3296-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SLED12 / SLES12 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the SUSE-SU-2021:3296-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.suse.com/pipermail/sle-security-updates/2021-October/009534.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?de5ca92b\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/07\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nvar os_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED12|SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED12 / SLES12', 'SUSE ' + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE ' + os_ver, cpu);\n\nvar sp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLED12\" && (! preg(pattern:\"^(5)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED12 SP5\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLES12\" && (! preg(pattern:\"^(2|3|4|5)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP2/3/4/5\", os_ver + \" SP\" + sp);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.4'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'webkit2gtk3-devel-2.32.4-2.71.2', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'webkit2gtk3-devel-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-sdk-release-12.5'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'2', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'webkit2gtk3-devel-2.32.4-2.71.2', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.2'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.4'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-2.71.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-12.5'}\n];\n\nvar ltss_caveat_required = FALSE;\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var sp = NULL;\n var cpu = NULL;\n var exists_check = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (exists_check) {\n if (!rpm_exists(release:release, rpm:exists_check)) continue;\n if ('ltss' >< tolower(exists_check)) ltss_caveat_required = TRUE;\n }\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n var ltss_plugin_caveat = NULL;\n if(ltss_caveat_required) ltss_plugin_caveat = '\\n' +\n 'NOTE: This vulnerability check contains fixes that apply to\\n' +\n 'packages only available in SUSE Enterprise Linux Server LTSS\\n' +\n 'repositories. Access to these package security updates require\\n' +\n 'a paid SUSE LTSS subscription.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + ltss_plugin_caveat\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang", "p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:suse_linux:webkit2gtk3-devel", "cpe:/o:novell:suse_linux:12"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-06T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "OPENSUSE-2021-3353.NASL", "hash": "41ebc7ead3bc5f57cc2e8230c85b89b4", "type": "nessus", "bulletinFamily": "scanner", "title": "openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:3353-1)", "description": "The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-13T00:00:00", "modified": "2021-10-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/154105", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-21806", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://bugzilla.suse.com/1190701", "https://www.suse.com/security/cve/CVE-2021-30858", "http://www.nessus.org/u?8fdeef26", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:21", "history": [{"bulletin": {"id": "OPENSUSE-2021-3353.NASL", "hash": "3ecda069fc49167bd4719153647e3520", "type": "nessus", "bulletinFamily": "scanner", "title": "openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:3353-1)", "description": "The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-13T00:00:00", "modified": "2021-10-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/154105", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-30858", "http://www.nessus.org/u?8fdeef26", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://bugzilla.suse.com/1190701", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://bugzilla.suse.com/1188697", "https://www.suse.com/security/cve/CVE-2021-21806"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-14T12:04:28", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-14T12:04:28", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-10-14T12:04:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "154105", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# openSUSE Security Update openSUSE-SU-2021:3353-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(154105);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/13\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:3353-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe openSUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4KJIY3NX4MIKAMIQIFUSKB4JVJBMJUFI/\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?8fdeef26\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit-jsc-4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.3\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/SuSE/release');\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, 'openSUSE');\nvar os_ver = pregmatch(pattern: \"^SUSE([\\d.]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');\nos_ver = os_ver[1];\nif (release !~ \"^(SUSE15\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.3', release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + os_ver, cpu);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libjavascriptcoregtk-4_0-18-32bit-2.32.4-12.3', 'cpu':'x86_64', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-32bit-2.32.4-12.3', 'cpu':'x86_64', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit-jsc-4-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-minibrowser-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var cpu = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (rpm_check(release:release, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libjavascriptcoregtk-4_0-18-32bit / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang", "p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:opensuse:webkit-jsc-4", "p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:opensuse:webkit2gtk3-devel", "p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser", "cpe:/o:novell:opensuse:15.3"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-12T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-14T12:04:28", "differentElements": ["vpr"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-14T12:04:28", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-10-14T12:04:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "154105", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# openSUSE Security Update openSUSE-SU-2021:3353-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(154105);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/13\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"openSUSE 15 Security Update : webkit2gtk3 (openSUSE-SU-2021:3353-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe openSUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4KJIY3NX4MIKAMIQIFUSKB4JVJBMJUFI/\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?8fdeef26\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit-jsc-4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:15.3\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item('Host/SuSE/release');\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, 'openSUSE');\nvar os_ver = pregmatch(pattern: \"^SUSE([\\d.]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');\nos_ver = os_ver[1];\nif (release !~ \"^(SUSE15\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.3', release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + os_ver, cpu);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libjavascriptcoregtk-4_0-18-32bit-2.32.4-12.3', 'cpu':'x86_64', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk-4_0-37-32bit-2.32.4-12.3', 'cpu':'x86_64', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit-jsc-4-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'webkit2gtk3-minibrowser-2.32.4-12.3', 'release':'SUSE15.3', 'rpm_spec_vers_cmp':TRUE}\n];\n\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var cpu = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (rpm_check(release:release, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libjavascriptcoregtk-4_0-18-32bit / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:opensuse:libjavascriptcoregtk-4_0-18-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:opensuse:libwebkit2gtk-4_0-37-32bit", "p-cpe:/a:novell:opensuse:libwebkit2gtk3-lang", "p-cpe:/a:novell:opensuse:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:opensuse:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:opensuse:webkit-jsc-4", "p-cpe:/a:novell:opensuse:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:opensuse:webkit2gtk3-devel", "p-cpe:/a:novell:opensuse:webkit2gtk3-minibrowser", "cpe:/o:novell:opensuse:15.3"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-12T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SUSE_SU-2021-3282-1.NASL", "hash": "f08596e0db4d8cbb4029228f7e46da0e", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3282-1)", "description": "The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3282-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-05T00:00:00", "modified": "2021-10-05T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153868", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?ef7826de", "https://www.suse.com/security/cve/CVE-2021-21806", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://bugzilla.suse.com/1190701", "https://www.suse.com/security/cve/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:13", "history": [{"bulletin": {"id": "SUSE_SU-2021-3282-1.NASL", "hash": "1c248c693600bb4e961120e57678cc6c", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3282-1)", "description": "The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3282-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-05T00:00:00", "modified": "2021-10-05T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153868", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-21806", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://www.suse.com/security/cve/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://bugzilla.suse.com/1190701", "http://www.nessus.org/u?ef7826de", "https://bugzilla.suse.com/1188697"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-06T00:01:28", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-06T00:01:28", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-06T00:01:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153868", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# SUSE update advisory SUSE-SU-2021:3282-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153868);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"SuSE\", value:\"SUSE-SU-2021:3282-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3282-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe SUSE-SU-2021:3282-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.suse.com/pipermail/sle-security-updates/2021-October/009531.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?ef7826de\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nvar os_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLES15', 'SUSE ' + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE ' + os_ver, cpu);\n\nvar sp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(0|1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP0/1\", os_ver + \" SP\" + sp);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'}\n];\n\nvar ltss_caveat_required = FALSE;\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var sp = NULL;\n var cpu = NULL;\n var exists_check = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (exists_check) {\n if (!rpm_exists(release:release, rpm:exists_check)) continue;\n if ('ltss' >< tolower(exists_check)) ltss_caveat_required = TRUE;\n }\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n var ltss_plugin_caveat = NULL;\n if(ltss_caveat_required) ltss_plugin_caveat = '\\n' +\n 'NOTE: This vulnerability check contains fixes that apply to\\n' +\n 'packages only available in SUSE Enterprise Linux Server LTSS\\n' +\n 'repositories. Access to these package security updates require\\n' +\n 'a paid SUSE LTSS subscription.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + ltss_plugin_caveat\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang", "p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:suse_linux:webkit2gtk3-devel", "cpe:/o:novell:suse_linux:15"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-04T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-06T00:01:28", "differentElements": ["vpr"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "SUSE_SU-2021-3353-1.NASL", "MACOS_HT212804.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-06T00:01:28", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-06T00:01:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153868", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# SUSE update advisory SUSE-SU-2021:3282-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(153868);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/05\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"SuSE\", value:\"SUSE-SU-2021:3282-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3282-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in\nthe SUSE-SU-2021:3282-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.suse.com/pipermail/sle-security-updates/2021-October/009531.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?ef7826de\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nvar os_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLES15', 'SUSE ' + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE ' + os_ver, cpu);\n\nvar sp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(0|1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP0/1\", os_ver + \" SP\" + sp);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLES_SAP-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-ESPOS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'SLE_HPC-LTSS-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'0', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-ltss-release-15.1'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-3.82.1', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'},\n {'reference':'webkit2gtk3-devel-2.32.4-3.82.1', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sles-release-15.1'}\n];\n\nvar ltss_caveat_required = FALSE;\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var sp = NULL;\n var cpu = NULL;\n var exists_check = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (exists_check) {\n if (!rpm_exists(release:release, rpm:exists_check)) continue;\n if ('ltss' >< tolower(exists_check)) ltss_caveat_required = TRUE;\n }\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n var ltss_plugin_caveat = NULL;\n if(ltss_caveat_required) ltss_plugin_caveat = '\\n' +\n 'NOTE: This vulnerability check contains fixes that apply to\\n' +\n 'packages only available in SUSE Enterprise Linux Server LTSS\\n' +\n 'repositories. Access to these package security updates require\\n' +\n 'a paid SUSE LTSS subscription.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + ltss_plugin_caveat\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang", "p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:suse_linux:webkit2gtk3-devel", "cpe:/o:novell:suse_linux:15"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-04T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SUSE_SU-2021-3353-1.NASL", "hash": "b07f34328cb1863c7f368f01be601133", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3353-1)", "description": "The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-13T00:00:00", "modified": "2021-10-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/154093", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-21806", "https://bugzilla.suse.com/1188697", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "https://bugzilla.suse.com/1190701", "https://www.suse.com/security/cve/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://www.nessus.org/u?3eb79926"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-23T23:35:13", "history": [{"bulletin": {"id": "SUSE_SU-2021-3353-1.NASL", "hash": "6d7f87363a45a907ccf174b3885d420b", "type": "nessus", "bulletinFamily": "scanner", "title": "SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3353-1)", "description": "The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-10-13T00:00:00", "modified": "2021-10-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/154093", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.suse.com/security/cve/CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21806", "http://www.nessus.org/u?3eb79926", "https://bugzilla.suse.com/1190701", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "https://bugzilla.suse.com/1188697", "https://www.suse.com/security/cve/CVE-2021-21806"], "cvelist": ["CVE-2021-21806", "CVE-2021-30858"], "immutableFields": [], "lastseen": "2021-10-14T12:03:57", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-14T12:03:57", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-14T12:03:57", "rev": 2}}, "objectVersion": "1.6", "pluginID": "154093", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# SUSE update advisory SUSE-SU-2021:3353-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(154093);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/13\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"SuSE\", value:\"SUSE-SU-2021:3353-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3353-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the SUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.suse.com/pipermail/sle-security-updates/2021-October/009572.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?3eb79926\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nvar os_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED15|SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED15 / SLES15', 'SUSE ' + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE ' + os_ver, cpu);\n\nvar sp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLED15\" && (! preg(pattern:\"^(2|3)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED15 SP2/3\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(2|3)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP2/3\", os_ver + \" SP\" + sp);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'}\n];\n\nvar ltss_caveat_required = FALSE;\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var sp = NULL;\n var cpu = NULL;\n var exists_check = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (exists_check) {\n if (!rpm_exists(release:release, rpm:exists_check)) continue;\n if ('ltss' >< tolower(exists_check)) ltss_caveat_required = TRUE;\n }\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang", "p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:suse_linux:webkit2gtk3-devel", "cpe:/o:novell:suse_linux:15"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-12T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-14T12:03:57", "differentElements": ["vpr"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "redhatcve", "idList": ["RH:CVE-2021-21806", "RH:CVE-2021-30858"]}, {"type": "cve", "idList": ["CVE-2021-21806", "CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-21806", "UB:CVE-2021-30858"]}, {"type": "attackerkb", "idList": ["AKB:18331B5B-220A-4F95-9AD3-0EEBAF929504"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "OPENSUSE-2021-3353.NASL", "APPLE_IOS_1255_CHECK.NBIN", "701363.PASL", "APPLE_IOS_148_CHECK.NBIN", "FREEBSD_PKG_576AA3941D8511EC8B7D4F5B624574E2.NASL", "MACOS_HT212804.NASL", "SUSE_SU-2021-3282-1.NASL", "UBUNTU_USN-5087-1.NASL", "DEBIAN_DSA-4976.NASL", "SUSE_SU-2021-3296-1.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2021:3353-1", "OPENSUSE-SU-2021:1369-1"]}, {"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "talos", "idList": ["TALOS-2020-1214"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "freebsd", "idList": ["576AA394-1D85-11EC-8B7D-4F5B624574E2"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD", "FEDORA:A5DD43052741"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:5101CC734C1A900451E5994AFF57209A", "QUALYSBLOG:1EBCA555F1E846ACB6207A523F56D750", "QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:BB8CDCFD08801BDD2929E342853D03E9", "THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:2741F0E9DD9F764C60701C9C81F231C5"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:11D4071979D3FC1E6028AA8D71EB87F4"]}], "modified": "2021-10-14T12:03:57", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-10-14T12:03:57", "rev": 2}}, "objectVersion": "1.6", "pluginID": "154093", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# SUSE update advisory SUSE-SU-2021:3353-1. The text itself\n# is copyright (C) SUSE.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(154093);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/10/13\");\n\n script_cve_id(\"CVE-2021-21806\", \"CVE-2021-30858\");\n script_xref(name:\"SuSE\", value:\"SUSE-SU-2021:3353-1\");\n script_xref(name:\"IAVA\", value:\"2021-A-0414-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0437\");\n\n script_name(english:\"SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:3353-1)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote SUSE host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the SUSE-SU-2021:3353-1 advisory.\n\n - An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially\n crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim\n needs to visit a malicious web site to trigger the vulnerability. (CVE-2021-21806)\n\n - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and\n iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code\n execution. Apple is aware of a report that this issue may have been actively exploited. (CVE-2021-30858)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1188697\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.suse.com/1190701\");\n # https://lists.suse.com/pipermail/sle-security-updates/2021-October/009572.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?3eb79926\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-21806\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.suse.com/security/cve/CVE-2021-30858\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-30858\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/07/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/10/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/10/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:webkit2gtk3-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:15\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"SuSE Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar release = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nvar os_ver = pregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(SLED15|SLES15)$\", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED15 / SLES15', 'SUSE ' + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE ' + os_ver, cpu);\n\nvar sp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLED15\" && (! preg(pattern:\"^(2|3)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED15 SP2/3\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLES15\" && (! preg(pattern:\"^(2|3)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES15 SP2/3\", os_ver + \" SP\" + sp);\n\nvar pkgs = [\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.2'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libjavascriptcoregtk-4_0-18-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk-4_0-37-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'libwebkit2gtk3-lang-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'webkit2gtk-4_0-injected-bundles-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-basesystem-release-15.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.2'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'},\n {'reference':'webkit2gtk3-devel-2.32.4-12.3', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'sle-module-desktop-applications-release-15.3'}\n];\n\nvar ltss_caveat_required = FALSE;\nvar flag = 0;\nforeach package_array ( pkgs ) {\n var reference = NULL;\n var release = NULL;\n var sp = NULL;\n var cpu = NULL;\n var exists_check = NULL;\n var rpm_spec_vers_cmp = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (reference && release) {\n if (exists_check) {\n if (!rpm_exists(release:release, rpm:exists_check)) continue;\n if ('ltss' >< tolower(exists_check)) ltss_caveat_required = TRUE;\n }\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libjavascriptcoregtk-4_0-18 / libwebkit2gtk-4_0-37 / etc');\n}\n", "naslFamily": "SuSE Local Security Checks", "cpe": ["p-cpe:/a:novell:suse_linux:libjavascriptcoregtk-4_0-18", "p-cpe:/a:novell:suse_linux:libwebkit2gtk-4_0-37", "p-cpe:/a:novell:suse_linux:libwebkit2gtk3-lang", "p-cpe:/a:novell:suse_linux:typelib-1_0-JavaScriptCore-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2-4_0", "p-cpe:/a:novell:suse_linux:typelib-1_0-WebKit2WebExtension-4_0", "p-cpe:/a:novell:suse_linux:webkit2gtk-4_0-injected-bundles", "p-cpe:/a:novell:suse_linux:webkit2gtk3-devel", "cpe:/o:novell:suse_linux:15"], "solution": "Update the affected packages.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30858", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-10-12T00:00:00", "vulnerabilityPublicationDate": "2021-07-08T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "04b7879b7da830dac6ff4b096610badb", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, including the following:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\n - Arbitrary code execution when processing a maliciously crafted dfont file. (CVE-2021-30841, CVE-2021-30842, CVE-2021-30843)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-10-21T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30846", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30820", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30849", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30848", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30857", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30842", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30843", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30855", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30859", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30841", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2013-0340", "CVE-2021-30820", "CVE-2021-30841", "CVE-2021-30842", "CVE-2021-30843", "CVE-2021-30846", "CVE-2021-30848", "CVE-2021-30849", "CVE-2021-30855", "CVE-2021-30857", "CVE-2021-30858", "CVE-2021-30859", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-10-23T23:36:01", "history": [{"bulletin": {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "8271c943c7fe9c57e327508e3a35f2c9", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-09-16T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-18T00:09:44", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30858", "CVE-2021-30860"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}], "modified": "2021-09-18T00:09:44", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2021-09-18T00:09:44", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153434", "sourceData": "Binary data apple_ios_148_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 14.8 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-13T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-18T00:09:44", "differentElements": ["vpr"], "edition": 1}, {"bulletin": {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "b9db850fb18aa53a0d453a5ca0387a03", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-09-16T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-19T23:39:43", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30860", "CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-19T23:39:43", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-19T23:39:43", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153434", "sourceData": "Binary data apple_ios_148_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 14.8 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-13T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-19T23:39:43", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "5cda5871bd386cbc48468394ff549de7", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, as follows:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-09-20T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858"], "cvelist": ["CVE-2021-30858", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-21T11:40:40", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30860", "CVE-2021-30858"]}, {"type": "thn", "idList": ["THN:919B3D59F2A9DE80FF2DC5F8833E4831", "THN:3691EA68445933ED72DD1B52F712F791"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "nessus", "idList": ["MACOS_HT212805.NASL", "MACOS_HT212804.NASL"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}], "modified": "2021-09-19T23:39:43", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-19T23:39:43", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153434", "sourceData": "Binary data apple_ios_148_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 14.8 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-13T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-21T11:40:40", "differentElements": ["cvelist", "description", "modified", "references"], "edition": 3}, {"bulletin": {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "964f20b63ba14583435f6f25002db062", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, including the following:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\n - Arbitrary code execution when processing a maliciously crafted dfont file. (CVE-2021-30841, CVE-2021-30842, CVE-2021-30843)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-09-21T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30848", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30849", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30859", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30820", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30855", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30842", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30846", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30841", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30843", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30857"], "cvelist": ["CVE-2013-0340", "CVE-2021-30820", "CVE-2021-30841", "CVE-2021-30842", "CVE-2021-30843", "CVE-2021-30846", "CVE-2021-30848", "CVE-2021-30849", "CVE-2021-30855", "CVE-2021-30857", "CVE-2021-30858", "CVE-2021-30859", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-21T23:41:42", "history": [], "viewCount": 10, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2013-0340", "CVE-2021-30860", "CVE-2021-30859", "CVE-2021-30857", "CVE-2021-30858", "CVE-2021-30855"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2021-30858", "UB:CVE-2013-0340"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_5FA90EE6BC9E11EBA287E0D55E2A8BF9.NASL", "SLACKWARE_SSA_2021-143-01.NASL", "APPLE_IOS_15_CHECK.NBIN", "DEBIAN_DSA-4975.NASL", "IBM_NETEZZA_ANALYTICS_SWG22012645.NASL", "DEBIAN_DSA-4976.NASL", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL", "UBUNTU_USN-5087-1.NASL", "GENTOO_GLSA-201701-21.NASL"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "threatpost", "idList": ["THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4976-1:A46CA", "DEBIAN:DSA-4975-1:A7F19"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "slackware", "idList": ["SSA-2021-143-01"]}, {"type": "freebsd", "idList": ["5FA90EE6-BC9E-11EB-A287-E0D55E2A8BF9"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "gentoo", "idList": ["GLSA-201701-21"]}], "modified": "2021-09-21T23:41:42", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-21T23:41:42", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153434", "sourceData": "Binary data apple_ios_148_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 14.8 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-13T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-21T23:41:42", "differentElements": ["modified"], "edition": 4}, {"bulletin": {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "ce866aa749fe0fb67545b18a8e205e45", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, including the following:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\n - Arbitrary code execution when processing a maliciously crafted dfont file. (CVE-2021-30841, CVE-2021-30842, CVE-2021-30843)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30859", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30841", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30855", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30857", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30848", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30849", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30846", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30820", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30842", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30843"], "cvelist": ["CVE-2013-0340", "CVE-2021-30820", "CVE-2021-30841", "CVE-2021-30842", "CVE-2021-30843", "CVE-2021-30846", "CVE-2021-30848", "CVE-2021-30849", "CVE-2021-30855", "CVE-2021-30857", "CVE-2021-30858", "CVE-2021-30859", "CVE-2021-30860"], "immutableFields": [], "lastseen": "2021-09-25T11:44:37", "history": [], "viewCount": 13, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:7A03F1FDD93F2460E93364A81C411404"]}, {"type": "cve", "idList": ["CVE-2021-30855", "CVE-2021-30858", "CVE-2013-0340", "CVE-2021-30857", "CVE-2021-30859", "CVE-2021-30860"]}, {"type": "redhatcve", "idList": ["RH:CVE-2021-30858"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2013-0340", "UB:CVE-2021-30858"]}, {"type": "nessus", "idList": ["DEBIAN_DSA-4975.NASL", "APPLE_IOS_15_CHECK.NBIN", "FREEBSD_PKG_5FA90EE6BC9E11EBA287E0D55E2A8BF9.NASL", "MACOS_HT212804.NASL", "MACOS_HT212805.NASL", "APPLE_IOS_1255_CHECK.NBIN", "DEBIAN_DSA-4976.NASL", "GENTOO_GLSA-201701-21.NASL", "UBUNTU_USN-5087-1.NASL", "IBM_NETEZZA_ANALYTICS_SWG22012645.NASL", "SLACKWARE_SSA_2021-143-01.NASL"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:C8139A26F9F7474D197CBF36F4F05D3D"]}, {"type": "thn", "idList": ["THN:3691EA68445933ED72DD1B52F712F791", "THN:2741F0E9DD9F764C60701C9C81F231C5", "THN:919B3D59F2A9DE80FF2DC5F8833E4831"]}, {"type": "hivepro", "idList": ["HIVEPRO:433978802EA1E557CC5202EE1014E67B"]}, {"type": "threatpost", "idList": ["THREATPOST:1A88FF1D2951B8467D062697D5D05CFA", "THREATPOST:958AA77BA7D3A5325FEB47A5DE036F1C"]}, {"type": "malwarebytes", "idList": ["MALWAREBYTES:0A7B79D902F4C3089D6602A5A3520EDF"]}, {"type": "fedora", "idList": ["FEDORA:D55FD30AE7DD"]}, {"type": "ubuntu", "idList": ["USN-5087-1"]}, {"type": "debian", "idList": ["DEBIAN:DSA-4975-1:A7F19", "DEBIAN:DSA-4976-1:A46CA"]}, {"type": "freebsd", "idList": ["5FA90EE6-BC9E-11EB-A287-E0D55E2A8BF9"]}, {"type": "slackware", "idList": ["SSA-2021-143-01"]}, {"type": "krebs", "idList": ["KREBS:2EC42B845847A6DCFE50ECEB9FF61C29"]}, {"type": "avleonov", "idList": ["AVLEONOV:5945665DFA613F7707360C10CED8C916"]}, {"type": "gentoo", "idList": ["GLSA-201701-21"]}], "modified": "2021-09-25T11:44:37", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-25T11:44:37", "rev": 2}}, "objectVersion": "1.6", "pluginID": "153434", "sourceData": "Binary data apple_ios_148_check.nbin", "naslFamily": "Mobile Devices", "cpe": ["cpe:/o:apple:iphone_os"], "solution": "Upgrade to Apple iOS version 14.8 or later", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-30860", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-09-13T00:00:00", "vulnerabilityPublicationDate": "2021-08-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-25T11:44:37", "differentElements": ["vpr"], "edition": 5}, {"bulletin": {"id": "APPLE_IOS_148_CHECK.NBIN", "hash": "d04e9872885071595ecb77bc7868e0ae", "type": "nessus", "bulletinFamily": "scanner", "title": "Apple iOS < 14.8 Multiple Vulnerabilities (HT212807)", "description": "The version of Apple iOS running on the mobile device is prior to 14.8. It is, therefore, affected by multiple vulnerabilities, including the following:\n\n - A use after free issue due to incorrect memory management, which can lead to arbitrary code execution when processing maliciously crafted web content. (CVE-2021-30858)\n\n - An integer overflow issue due to insufficient input validation, which can lead to arbitrary code execution when processing a maliciously crafted PDF. (CVE-2021-30860)\n\n - Arbitrary code execution when processing a maliciously crafted dfont file. (CVE-2021-30841, CVE-2021-30842, CVE-2021-30843)\n\nNote that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.", "published": "2021-09-16T00:00:00", "modified": "2021-09-24T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/153434", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30841", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30855", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30820", "http:
