CVE-2021-30858

Published on: 08/24/2021 12:00:00 AM UTC

Last Modified on: 12/03/2021 02:27:00 AM UTC

CVE-2021-30858

Source: Mitre Source: NIST CVE.ORG Print: PDF PDF
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Certain versions of Ipados from Apple contain the following vulnerability:

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

  • CVE-2021-30858 has been assigned by URL Logo [email protected] to track the vulnerability - currently rated as HIGH severity.
  • Affected Vendor/Software: URL Logo Apple - macOS version < 11.6
  • Affected Vendor/Software: URL Logo Apple - iOS version < 14.8

CVSS3 Score: 8.8 - HIGH

Attack
Vector 		Attack
Complexity		 Privileges
Required		 User
Interaction
NETWORK LOW NONE REQUIRED
Scope Confidentiality
Impact		 Integrity
Impact		 Availability
Impact
UNCHANGED HIGH HIGH HIGH

CVSS2 Score: 6.8 - MEDIUM

Access
Vector		 Access
Complexity		 Authentication
NETWORK MEDIUM NONE
Confidentiality
Impact		 Integrity
Impact		 Availability
Impact
PARTIAL PARTIAL PARTIAL

CVE References

Description Tags Link
[SECURITY] Fedora 33 Update: webkit2gtk3-2.32.4-1.fc33 - package-announce - Fedora Mailing-Lists lists.fedoraproject.org
text/html
 URL Logo FEDORA FEDORA-2021-edf6957b7d
Full Disclosure: APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6 seclists.org
text/html
 URL Logo FULLDISC 20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6
oss-security - Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006 www.openwall.com
text/html
 URL Logo MLIST [oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
Debian -- Security Information -- DSA-4976-1 wpewebkit www.debian.org
Depreciated Link
text/html
 URL Logo DEBIAN DSA-4976
[SECURITY] Fedora 34 Update: webkit2gtk3-2.32.4-1.fc34 - package-announce - Fedora Mailing-Lists lists.fedoraproject.org
text/html
 URL Logo FEDORA FEDORA-2021-c00e45b6c0
Full Disclosure: APPLE-SA-2021-09-13-5 Safari 14.1.2 seclists.org
text/html
 URL Logo FULLDISC 20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2
oss-security - WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005 www.openwall.com
text/html
 URL Logo MLIST [oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005
About the security content of iOS 12.5.5 - Apple Support support.apple.com
text/html
 URL Logo CONFIRM support.apple.com/kb/HT212824
Full Disclosure: APPLE-SA-2021-09-23-1 iOS 12.5.5 seclists.org
text/html
 URL Logo FULLDISC 20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5
Full Disclosure: APPLE-SA-2021-09-13-3 macOS Big Sur 11.6 seclists.org
text/html
 URL Logo FULLDISC 20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6
Full Disclosure: APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8 seclists.org
text/html
 URL Logo FULLDISC 20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8
oss-security - WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006 www.openwall.com
text/html
 URL Logo MLIST [oss-security] 20211026 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
About the security content of macOS Big Sur 11.6 - Apple Support support.apple.com
text/html
 URL Logo MISC support.apple.com/en-us/HT212804
Debian -- Security Information -- DSA-4975-1 webkit2gtk www.debian.org
Depreciated Link
text/html
 URL Logo DEBIAN DSA-4975
oss-security - Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006 www.openwall.com
text/html
 URL Logo MLIST [oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
oss-security - Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006 www.openwall.com
text/html
 URL Logo MLIST [oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
Full Disclosure: APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8 seclists.org
text/html
 URL Logo FULLDISC 20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8
About the security content of iOS 14.8 and iPadOS 14.8 - Apple Support support.apple.com
text/html
 URL Logo MISC support.apple.com/en-us/HT212807
By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Related QID Numbers

  • 159448 Oracle Enterprise Linux Security Update for webkit2gtk3 (ELSA-2021-4097)
  • 159587 Oracle Enterprise Linux Security Update for webkitgtk4 (ELSA-2022-0059)
  • 178797 Debian Security Update for webkit2gtk (DSA 4975-1)
  • 178800 Debian Security Update for wpewebkit (DSA 4976-1)
  • 198513 Ubuntu Security Notification for WebKitGTK Vulnerabilities (USN-5087-1)
  • 239766 Red Hat Update for webkit2gtk3 (RHSA-2021:4097)
  • 239896 Red Hat Update for webkit2gtk3 (RHSA-2021:4686)
  • 239991 Red Hat Update for webkit2gtk3 (RHSA-2022:0075)
  • 239993 Red Hat Update for webkitgtk4 (RHSA-2022:0059)
  • 281919 Fedora Security Update for webkit2gtk3 (FEDORA-2021-c00e45b6c0)
  • 281959 Fedora Security Update for webkit2gtk3 (FEDORA-2021-edf6957b7d)
  • 296061 Oracle Solaris 11.4 Support Repository Update (SRU) 42.113.1 Missing (CPUJAN2022)
  • 296065 Oracle Solaris 11.4 Support Repository Update (SRU) 39.107.1 Missing (CPUOCT2021)
  • 353163 Amazon Linux Security Advisory for webkitgtk4 : ALAS2-2022-1747
  • 354436 Amazon Linux Security Advisory for webkit2gtk3 : ALAS2022-2022-015
  • 375855 Apple MacOS Big Sur 11.6 Not Installed (HT212804)
  • 375857 Apple Safari Arbitrary Code Execution Vulnerability (HT212808)
  • 377406 Alibaba Cloud Linux Security Update for webkit2gtk3 (ALINUX3-SA-2021:0079)
  • 377459 Alibaba Cloud Linux Security Update for webkitgtk4 (ALINUX2-SA-2022:0003)
  • 502197 Alpine Linux Security Update for webkit2gtk
  • 502394 Alpine Linux Security Update for webkit2gtk
  • 610367 Apple iOS 14.8 and iPadOS 14.8 Security Update Missing
  • 610369 Apple iOS 12.5.5 Security Update Missing (HT212824)
  • 690026 Free Berkeley Software Distribution (FreeBSD) Security Update for webkit2-gtk3 (576aa394-1d85-11ec-8b7d-4f5b624574e2)
  • 710570 Gentoo Linux WebkitGTK+ Multiple Vulnerabilities (GLSA 202202-01)
  • 751190 SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2021:3282-1)
  • 751194 SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2021:3296-1)
  • 751221 OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2021:3353-1)
  • 751247 OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2021:1369-1)
  • 751623 SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2022:0142-1)
  • 751646 SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2022:0183-1)
  • 751648 SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2022:0182-1)
  • 751659 OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2022:0182-1)
  • 751755 OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2022:0182-2)
  • 940168 AlmaLinux Security Update for webkit2gtk3 (ALSA-2021:4097)
  • 960051 Rocky Linux Security Update for webkit2gtk3 (RLSA-2021:4097)

Exploit/POC from Github

PoC for exploiting CVE-2021-30858 : A use after free issue was addressed with improved memory management. This issue …

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
Operating
System		AppleIpadosAllAllAllAll
Operating
System		AppleIphone OsAllAllAllAll
Operating
System		AppleMacosAllAllAllAll
Operating
System		DebianDebian Linux10.0AllAllAll
Operating
System		DebianDebian Linux11.0AllAllAll
Operating
System		FedoraprojectFedora33AllAllAll
Operating
System		FedoraprojectFedora34AllAllAll
  • cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*:
  • cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*:
  • cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*:
  • cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*:
  • cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*:
  • cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*:
  • cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*:

Social Mentions

Source Title Posted (UTC)
Twitter Icon @Jadeye_hu CVE-2021-30860 CVE-2021-30858 twitter.com/szifon/status/… 2021-09-13 17:22:42
Twitter Icon @maddiestone Apple patches two in-the-wild 0-days: 1 in CoreGraphics (CVE-2021-30860) for iOS and 1 in WebKit (CVE-2021-30858) support.apple.com/en-us/HT212807 2021-09-13 17:27:16
Twitter Icon @alexmak Ага, а информация уже есть! CVE-2021-30860 CVE-2021-30858 Apple is aware of a report that this issue may have been actively exploited. 2021-09-13 17:29:34
Twitter Icon @ApplSec ? ZERO-DAY DETAILS: - CVE-2021-30860 in CoreGraphics - CVE-2021-30858 in WebKit 2021-09-13 17:30:34
Twitter Icon @sogonsec CVE-2021-30860 CVE-2021-30858 2021-09-13 17:37:32
Twitter Icon @TomSellers CoreGraphics (PDF) CVE-2021-30860 - iOS, macOS Catalina, macOS BigSur, watchOS WebKit (web content) CVE-2021-30858… twitter.com/i/web/status/1… 2021-09-13 20:38:17
Twitter Icon @IT_securitynews Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 itsecuritynews.info/apple-releases… 2021-09-13 22:06:15
Twitter Icon @gorobchik_ @ua_watcher Дірки позакривали us-cert.cisa.gov/ncas/current-a… 2021-09-13 22:19:25
Twitter Icon @bettycjung Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 us-cert.cisa.gov/ncas/current-a… Update your Apple devices now! 2021-09-13 22:53:37
Twitter Icon @AlawyOnSecurity us-cert.cisa.gov/ncas/current-a… 2021-09-13 23:41:42
Twitter Icon @CryptoScamDB Apple has now released the security updates needed for this. More info: us-cert.cisa.gov/ncas/current-a… twitter.com/bantg/status/1… 2021-09-13 23:42:38
Twitter Icon @InfoSecHotSpot Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 twib.in/l/L6yr5ndXAd6z 2021-09-14 00:00:01
Twitter Icon @ipssignatures The vuln CVE-2021-30858 has a tweet created 0 days ago and retweeted 12 times. twitter.com/SecurityWeek/s… #pow1rtrtwwcve 2021-09-14 00:06:01
Twitter Icon @kloudfyre #Apple has released security updates to address #vulnerabilities —CVE-2021-30858 and CVE-2021-30860—in multiple pro… twitter.com/i/web/status/1… 2021-09-14 00:30:38
Twitter Icon @TheBTCGame @billmarczak @citizenlab Any idea if Mojave is affected? The Mojave Safari update addresses CVE-2021-30858, and see… twitter.com/i/web/status/1… 2021-09-14 00:38:54
Twitter Icon @Secnewsbytes Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 | CISA us-cert.cisa.gov/ncas/current-a… 2021-09-14 01:49:25
Twitter Icon @gibdavis1 This is making multiple headlines. Please make sure you update your Apple devices ASAP to have the patch installed. us-cert.cisa.gov/ncas/current-a… 2021-09-14 02:18:15
Twitter Icon @mgiraldo this is about this: us-cert.cisa.gov/ncas/current-a… update your apple (mac/ios) device asap twitter.com/mgiraldo/statu… 2021-09-14 03:36:53
Twitter Icon @softek_jp Apple Safari の WebKit に任意のコードを実行される問題 (CVE-2021-30858) [39976] sid.softek.jp/content/show/3… #SIDfm #脆弱性情報 2021-09-14 05:13:37
Twitter Icon @pasticus @petterij Tämäkö? us-cert.cisa.gov/ncas/current-a… Tässä myös macOS merkattu haavouttuvaksi 2021-09-14 05:27:34
Twitter Icon @pasticus @petterij CVE-2021-30858 ja CVE-2021-30860 2021-09-14 05:29:27
Twitter Icon @cyberdian_cert Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 bit.ly/3z8NGlF #CERT… twitter.com/i/web/status/1… 2021-09-14 06:01:03
Twitter Icon @meknowhu CISA: Apple Releases Security Updates, iOS 14.8 and iPadOS 14.8 us-cert.cisa.gov/ncas/current-a… 2021-09-14 06:05:46
Twitter Icon @vigilance_fr [email protected] #Vulnérabilité de Apple macOS : deux vulnérabilités. vigilance.fr/vulnerabilite/… Références : #CVE-2021-30858… twitter.com/i/web/status/1… 2021-09-14 06:09:02
Twitter Icon @vigilance_en [email protected] #Vulnerability of Apple macOS: two vulnerabilities. vigilance.fr/vulnerability/… Identifiers: #CVE-2021-30858,… twitter.com/i/web/status/1… 2021-09-14 06:09:03
Twitter Icon @Qnpfg zero day + zero click CVE-2021-30860 CVE-2021-30858 카메라, 전화/문자기록을 이스라엘 NSO그룹으로 전송한다는 듯. 고객은 각국정부-.- iPhone6~later… twitter.com/i/web/status/1… 2021-09-14 06:11:37
Twitter Icon @how_rich us-cert.cisa.gov/ncas/current-a… 2021-09-14 07:31:54
Twitter Icon @HenkPoley I suppose that CVE-2021-30858 was also patched on watchOS 7.6.2, but @apple forgot to list it. Since the Apple Watc… twitter.com/i/web/status/1… 2021-09-14 09:20:09
Twitter Icon @kyrie16 CoreGraphicsにおける整数オーバフローの欠陥(CVE-2021-30860)とWebKitにおける解放後メモリ利用の問題(CVE-2021-30858)。 forest.watch.impress.co.jp/docs/news/1350… >細工が施され… twitter.com/i/web/status/1… 2021-09-14 09:39:29
Twitter Icon @Gate_15_Analyst us-cert.cisa.gov/ncas/current-a… #CyberSecurity 2021-09-14 10:29:17
Twitter Icon @InakMali #Australian #Cyber Security Center issues alert for critical vulnerabilities CVE-2021-30858 and CVE-2021-30860 in #Apple products. 2021-09-14 10:30:48
Twitter Icon @Gate15_Jen Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 | CISA us-cert.cisa.gov/ncas/current-a… 2021-09-14 10:34:46
Twitter Icon @yorgokennos @julielerman @Apple us-cert.cisa.gov/ncas/current-a… 2021-09-14 12:07:14
Twitter Icon @CStone_IT Apple Issues Emergency Security Updates us-cert.cisa.gov/ncas/current-a… "New York Times" subscribers can read the story h… twitter.com/i/web/status/1… 2021-09-14 12:10:25
Twitter Icon @UofCBSD_Infosec us-cert.cisa.gov/ncas/current-a… 2021-09-14 12:32:49
Twitter Icon @ingallsinfosec Apple has released security updates to address vulnerabilities—CVE-2021-30858 and CVE-2021-30860—in multiple produc… twitter.com/i/web/status/1… 2021-09-14 13:51:11
Twitter Icon @SecureNetIT Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 us-cert.cisa.gov/ncas/current-a… https://t.co/HqUVq1A7qE 2021-09-14 14:00:01
Twitter Icon @PatrickCMiller Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 j.mp/2XeFSS3 2021-09-14 15:45:04
Twitter Icon @grahamgilbert CVE-2021-30858 is only patched in iOS 14 and macOS 11. If your devices are running anything older than those you ar… twitter.com/i/web/status/1… 2021-09-14 16:03:41
Twitter Icon @RajihSalim #التحديث الأمني المهم من #آبل لإغلاق #الثغرة #الأمنية الخطيرة CVE-2021-30858 CVE-2021-30860 يشمل #الاصدارات التا… twitter.com/i/web/status/1… 2021-09-14 17:36:32
Twitter Icon @Ramon_RMD @engadget Don't forget to patch your iOS sh*t: us-cert.cisa.gov/ncas/current-a… 2021-09-14 19:57:26
Twitter Icon @ipssignatures The vuln CVE-2021-30858 has a tweet created 0 days ago and retweeted 11 times. twitter.com/grahamgilbert/… #pow1rtrtwwcve 2021-09-14 20:06:00
Twitter Icon @CedarvilleIT URGENT! Apple has released security updates to address security vulnerabilities CVE-2021-30858 and 30860 in multipl… twitter.com/i/web/status/1… 2021-09-14 20:06:34
Twitter Icon @kilonova_gold Have an Apple product? Stop what you are doing and update your software immediately. #Pegasus #Apple CISA us-cert.cisa.gov/ncas/current-a… 2021-09-14 20:53:24
Twitter Icon @oahuwriter us-cert.cisa.gov/ncas/current-a… 2021-09-14 23:12:51
Twitter Icon @ma31stm 「「CVE-2021-30860」は「macOS Catalina」に、「CVE-2021-30858」は「macOS Catalina」および「macOS Mojave」に搭載されている「Safari」にも影響するとのこと」 twitter.com/madonomori/sta… 2021-09-14 23:13:38
Twitter Icon @ma31stm 「CoreGraphicsにおける整数オーバフローの欠陥(CVE-2021-30860)と、WebKitにおける解放後メモリ利用(use after free)の問題(CVE-2021-30858)が対処された」「前者は悪意あるP… twitter.com/i/web/status/1… 2021-09-14 23:15:06
Twitter Icon @kishanpatelAAP 2. CVE-2021-30858 - Processing maliciously crafted web content may lead to arbitrary code execution. 2021-09-15 04:19:42
Twitter Icon @ka0com Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 - us-cert.cisa.gov/ncas/current-a… 2021-09-15 04:51:15
Twitter Icon @management_sun IT Risk:Apple.iOS,iPadOSに複数の脆弱性 CVE-2021-30860 CVE-2021-30858 support.apple.com/HT212807 auscert.org.au/bulletins/ESB-… 2021-09-15 04:58:56
Twitter Icon @management_sun IT Risk:Apple.macOS Big Surに複数の脆弱性 CVE-2021-30860 CVE-2021-30858 support.apple.com/HT212804 auscert.org.au/bulletins/ESB-… 2021-09-15 05:02:17
Twitter Icon @management_sun IT Risk:Apple.Safariに脆弱性 Mac OS CVE-2021-30858 support.apple.com/HT212808 auscert.org.au/bulletins/ESB-… 2021-09-15 05:05:13
Twitter Icon @management_sun IT Risk:Apple.Vulnerability in Safari Mac OS CVE-2021-30858 support.apple.com/HT212808 auscert.org.au/bulletins/ESB-… 2021-09-15 05:05:19
Twitter Icon @THEJargonSlayer us-cert.cisa.gov/ncas/current-a… #CyberSecurity 2021-09-15 14:12:02
Twitter Icon @cybermaterial_ NEW POST ? Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 - #cybersecurity… twitter.com/i/web/status/1… 2021-09-15 14:31:45
Twitter Icon @qualys Apple Zero-Day Arbitrary Code Execution Vulnerabilities (CVE-2021-30858 and CVE-2021-30860) threatprotect.qualys.com/2021/09/15/app… https://t.co/gykkPTZAO6 2021-09-16 05:55:24
Twitter Icon @BridgingApps Apple Releases Security Updates us-cert.cisa.gov/ncas/current-a… 2021-09-16 12:58:46
Twitter Icon @densetsuii Para los usuarios de Crapple, información de interés. #AppleEvent us-cert.cisa.gov/ncas/current-a… 2021-09-16 15:58:40
Twitter Icon @GrupoICA_Ciber ?APPLE? Múltiples vulnerabilidades de severidad alta en productos APPLE: CVE-2021-1859,CVE-2021-30858,CVE-2021-30… twitter.com/i/web/status/1… 2021-09-18 07:55:09
Twitter Icon @RedPacketSec CVE-2021-30858 - redpacketsecurity.com/cve-2021-30858/ #cybersecurity 2021-09-18 14:51:31
Twitter Icon @cybermaterial_ NEW POST ? Apple Releases Security Updates to Address CVE-2021-30858 and CVE-2021-30860 - #cybersecurity… twitter.com/i/web/status/1… 2021-09-19 09:35:20
Reddit Logo Icon /r/vulnintel Apple released two remote code execution vulnerabilities 2021-09-13 18:56:12
Reddit Logo Icon /r/k12cybersecurity MS-ISAC CYBERSECURITY ADVISORY - Multiple Vulnerabilities in Apple Products Could Allow for Remote Code Execution - PATCH: NOW 2021-09-14 13:06:58
Reddit Logo Icon /r/cybersecurity_help Apple CVE-2021-30858 vulnerability - 'legacy' devices 2021-09-16 08:38:51
Reddit Logo Icon /r/k12cybersecurity MS-ISAC CYBERSECURITY ADVISORY - Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution 2021-09-24 14:10:09
Reddit Logo Icon /r/jailbreak [Discussion] [Question] Maddie Stone on Twitter: RCA for WebKit itw 0-day CVE-2021-30858---Noob question: can someone, in medium-technical terms, explain how a simple script for changing the font can be useful? (Understood the memory corruption, but next?) How could they (JB geniuses) use it ? 2021-10-13 17:34:02
Reddit Logo Icon /r/iOS_Jailbreak [News] CVE-2021-30858 iOS WebKit RCE 0-day in the wild: googleprojectzero.github.io/0days-in-the-w… including POC. Can be chained with CVE-2021-30883 and used in 1-clicks and water-holing attacks against iOS users. 2021-10-14 08:51:35
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report