Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-1871

CVSSv4: NA | CVSSv3: 9.8 | CVSSv2: 7.5 | VMScore: 1000 | EPSS: 0.00997 | KEV: Exploitation Reported
Published: 02/04/2021 Updated: 21/11/2024

Vulnerability Summary

A security issue exists in WebKitGTK prior to 2.32.0 and WPE WebKit prior to 2.32.0. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple ipad os

apple iphone os

apple mac os x

apple mac os x 10.15.7

apple macos

debian debian linux 10.0

fedoraproject fedora 33

Vendor Advisories

Debian Security Advisories: DSA-4923-1 webkit2gtk -- security update
The following vulnerabilities have been discovered in the webkit2gtk web engine: CVE-2021-1788 Francisco Alonso discovered that processing maliciously crafted web content may lead to arbitrary code execution CVE-2021-1844 Clement Lecigne and Alison Huffman discovered that processing maliciously crafted web content may lead to arbi ...
Arch Linux Issues:
A security issue was discovered in WebKitGTK before 2320 and WPE WebKit before 2320 A remote attacker may be able to cause arbitrary code execution Apple is aware of a report that this issue may have been actively exploited ...

Mailing Lists

Full Disclosure: APPLE-SA-2021-01-26-1 iOS 14.4 and iPadOS 14.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-01-26-1 iOS 144 and iPadOS 144 iOS 144 and iPadOS 144 addresses the following issues Information about the security content is also available at supportapplecom/HT212146 Kernel Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod to ...
Full Disclosure: APPLE-SA-2021-02-01-2 Additional information for APPLE-SA-2021-01-26-1 iOS 14.4 and iPadOS 14.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-02-01-2 Additional information for APPLE-SA-2021-01-26-1 iOS 144 and iPadOS 144 iOS 144 and iPadOS 144 addresses the following issues Information about the security content is also available at supportapplecom/HT212146 Analytics Available for: iPhone 6s and later, iPad ...
Full Disclosure: APPLE-SA-2021-02-01-1 macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-02-01-1 macOS Big Sur 112, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave macOS Big Sur 112, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave addresses the following issues Information about the security content is also available at supp ...
Full Disclosure: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0003
------------------------------------------------------------------------ WebKitGTK and WPE WebKit Security Advisory WSA-2021-0003 ------------------------------------------------------------------------ Date reported : March 29, 2021 Advisory ID : WSA-2021-0003 WebKitGTK Advisory URL : webkitgtkorg/s ...

Recent Articles

Apple emits emergency iOS security updates while warning holes may have been exploited in wild by hackers
The Register • Chris Williams, Editor in Chief • 26 Jan 2021

Plus fixes for iPadOS, tvOS, watchOS, XCode, iCloud for Windows – and a day after Google disclosed Nork op

Apple today released software updates to patch vulnerabilities in iPhones and iPads that may have been exploited by miscreants to silently snoop on victims from afar. Folks should check for and install the latest version of their iOS, iPadOS, watchOS, and tvOS software. Here's the quick run down of the programming blunders: CVE-2021-1782: Fixed in iOS 14.4 and iPadOS 14.4, available for iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch (7th generation). This kernel...

Read more...

References

NVD-CWE-noinfohttps://nvd.nist.govhttps://www.debian.org/security/2021/dsa-4923https://www.first.org/epsshttps://security.archlinux.org/CVE-2021-1871https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/https://support.apple.com/en-us/HT212146https://support.apple.com/en-us/HT212147https://www.debian.org/security/2021/dsa-4923https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/https://support.apple.com/en-us/HT212146https://support.apple.com/en-us/HT212147https://www.debian.org/security/2021/dsa-4923
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-46656unknownCVE-2025-46577CVE-2025-32979paicodingXPath injectionhackmdCVE-2025-3643opplusCSRFlocal usersCVE-2025-32433CVE-2025-32432
Home
/
Search Results
/
CVE-2021-1871
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook