Apple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

openvas 19

fedora 2

freebsd 1

nessus 28

oraclelinux 2

debiancve 1

apple 4

redhat 4

alpinelinux 1

rocky 1

debian 2

amazon 1

almalinux 1

attackerkb 1

ubuntu 1

veracode 1

osv 4

githubexploit 1

prion 1

ubuntucve 1

nvd 1

redhatcve 1

mageia 2

checkpoint_advisories 1

cvelist 1

cve 1

thn 4

cisa 1

hivepro 1

qualysblog 4

suse 4

threatpost 1

malwarebytes 1

gentoo 1

googleprojectzero 1

openvas

Apple Safari Security Update (HT212808)

2021-09-14 00:00:00

Fedora: Security Advisory for webkit2gtk3 (FEDORA-2021-c00e45b6c0)

2021-09-22 00:00:00

Ubuntu: Security Advisory (USN-5087-1)

2021-09-23 00:00:00

fedora

[SECURITY] Fedora 34 Update: webkit2gtk3-2.32.4-1.fc34

2021-09-21 15:33:32

[SECURITY] Fedora 33 Update: webkit2gtk3-2.32.4-1.fc33

2021-10-04 01:04:10

freebsd

webkit2-gtk3 -- multiple vulnerabilities

2021-09-20 00:00:00

nessus

RHEL 8 : webkit2gtk3 (RHSA-2022:0075)

2022-01-12 00:00:00

Oracle Linux 7 : webkitgtk4 (ELSA-2022-0059)

2022-01-12 00:00:00

RHEL 8 : webkit2gtk3 (RHSA-2021:4686)

2021-11-17 00:00:00

oraclelinux

webkitgtk4 security update

2022-01-12 00:00:00

webkit2gtk3 security and bug fix update

2021-11-02 00:00:00

debiancve

CVE-2021-30858

2021-08-24 19:15:14

apple

About the security content of Safari 14.1.2

2021-09-13 00:00:00

About the security content of iOS 12.5.5

2021-09-23 00:00:00

About the security content of iOS 14.8 and iPadOS 14.8

2021-09-13 00:00:00

redhat

(RHSA-2022:0075) Moderate: webkit2gtk3 security update

2022-01-11 09:08:18

(RHSA-2021:4686) Moderate: webkit2gtk3 security update

2021-11-16 07:41:20

(RHSA-2022:0059) Moderate: webkitgtk4 security update

2022-01-11 09:01:44

alpinelinux

CVE-2021-30858

2021-08-24 19:15:14

rocky

webkit2gtk3 security and bug fix update

2021-11-02 10:34:24

debian

[SECURITY] [DSA 4975-1] webkit2gtk security update

2021-09-21 10:15:01

[SECURITY] [DSA 4976-1] wpewebkit security update

2021-09-21 10:17:04

amazon

Medium: webkitgtk4

2022-02-03 19:30:00

almalinux

Moderate: webkit2gtk3 security and bug fix update

2021-11-02 10:34:24

attackerkb

CVE-2021-30858

2021-08-24 00:00:00

ubuntu

WebKitGTK vulnerabilities

2021-09-22 00:00:00

veracode

Remote Code Execution (RCE)

2021-10-31 16:17:23

osv

webkit2gtk vulnerabilities

2021-09-22 16:32:35

Moderate: webkit2gtk3 security and bug fix update

2021-11-02 10:34:24

wpewebkit - security update

2021-09-20 00:00:00

githubexploit

Exploit for Use After Free in Apple Ipados

2021-10-14 01:51:39

prion

Design/Logic Flaw

2021-08-24 19:15:00

ubuntucve

CVE-2021-30858

2021-08-24 00:00:00

nvd

CVE-2021-30858

2021-08-24 19:15:14

redhatcve

CVE-2021-30858

2021-09-20 21:33:04

mageia

Updated webkit2 packages fix security vulnerability

2021-09-29 20:22:22

Updated webkit2 packages fix security vulnerability

2021-10-29 22:32:22

checkpoint_advisories

Apple iOS Use After Free (CVE-2021-30858)

2022-02-21 00:00:00

cvelist

CVE-2021-30858

2021-08-24 18:49:23

cve

CVE-2021-30858

2021-08-24 19:15:14

thn

Apple Issues Urgent Updates to Fix New Zero-Day Linked to Pegasus Spyware

2021-09-14 04:35:00

Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days

2021-09-24 03:39:00

CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog

2022-08-29 04:23:00

cisa

Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860

2021-09-13 00:00:00

hivepro

Apple fixes the zero-day vulnerabilities exploited by Pegasus spyware named “FORCEDENTRY”

2021-09-16 13:49:19

qualysblog

Detect & Prioritize NSO Pegasus iPhone Spyware Vulnerabilities Using VMDR for Mobile Devices

2021-09-20 14:47:57

NSO Pegasus iPhone Spyware Vulnerabilities Fixed by Apple – Detect & Prioritize Using VMDR for Mobile Devices

2021-09-29 08:28:10

Apple fixes zero-day in iOS and iPadOS 15.0.2 emergency release: Detect and Prioritize Vulnerabilities using VMDR for Mobile Devices

2021-10-18 07:41:18

suse

Security update for webkit2gtk3 (important)

2021-10-18 00:00:00

Security update for webkit2gtk3 (important)

2021-10-12 00:00:00

Security update for webkit2gtk3 (important)

2022-02-17 00:00:00

threatpost

Apple Patches 3 More Zero-Days Under Active Attack

2021-09-24 11:29:27

malwarebytes

Update now! Apple patches another privilege escalation bug in iOS and iPadOS

2021-10-12 16:07:53

gentoo

WebkitGTK+: Multiple vulnerabilities

2022-02-01 00:00:00

googleprojectzero

The More You Know, The More You Know You Don’t Know

2022-04-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.01

Percentile

83.3%

JSON

Related for CISA-KEV-CVE-2021-30858