Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
CVE-2021-30858 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-30858
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been act...
Apple Macos
Apple Iphone Os
Apple Ipados
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 10.0
Debian Debian Linux 11.0
5 Github repositories
1 Article
4.7
CVSSv3
CVE-2021-30884
The issue was resolved with additional restrictions on CSS compositing. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Visiting a maliciously crafted website may reveal a user's browsing history.
Apple Watchos
Apple Tvos
Apple Ipados
Apple Iphone Os
Apple Macos
6.5
CVSSv3
CVE-2021-30823
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.
Apple Ipados
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Safari
Apple Macos
6.5
CVSSv3
CVE-2021-30897
An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin.
Apple Tvos
Apple Ipados
Apple Iphone Os
Apple Macos
6.5
CVSSv3
CVE-2021-45481
In WebKitGTK prior to 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
Webkitgtk Webkitgtk
6.5
CVSSv3
CVE-2021-45482
In WebKitGTK prior to 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
Webkitgtk Webkitgtk
6.5
CVSSv3
CVE-2021-45483
In WebKitGTK prior to 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
Webkitgtk Webkitgtk
8.8
CVSSv3
CVE-2021-30809
A use after free issue was addressed with improved memory management. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple Safari
Apple Ipados
Apple Iphone Os
Apple Macos
Apple Tvos
Apple Watchos
5.5
CVSSv3
CVE-2021-30836
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing a maliciously crafted audio file may disclose restricted memory.
Apple Safari
Apple Ipados
Apple Iphone Os
Apple Macos
Apple Tvos
Apple Watchos
7.8
CVSSv3
CVE-2021-30848
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.
Apple Safari
Apple Ipados
Apple Iphone Os
Apple Macos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »