because people want to test it
PS4CVE20211879 because people want to test it link to the original post : googleprojectzerogithubio/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1879html
Apple iOS, iPadOS and watchOS universal XSS exploited in the wild. Processing maliciously crafted web content may lead to universal cross site scripting. Apple is aware of a report that this issue may have been actively exploited. Versions of iPhone, iPad, iPod, Apple Watch are affected.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple watchos |
||
apple iphone os |
||
apple ipados |
Plus: Did Google expose a Western spying op? Who cares? You're safer
In brief Apple has issued critical security patches for all supported phones, fondleslabs, and watches after being alerted to multiple possible intrusions by Google. The fix issued on Friday for iOS 14.4.2 and iPadOS 14.4.2, CVE-2021-1879, is urgently needed. According to Apple, the flaw allows for the creation of "maliciously crafted web content," which "may lead to universal cross-site scripting." Apple has heard that the code snafu "may have been actively exploited." To make matters worse, th...