{"api_version":"1","generated_at":"2026-04-22T21:02:51+00:00","cve":"CVE-2021-30858","urls":{"html":"https://cve.report/CVE-2021-30858","api":"https://cve.report/api/cve/CVE-2021-30858.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2021-30858","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2021-30858"},"summary":{"title":"CVE-2021-30858","description":"A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.","state":"PUBLIC","assigner":"product-security@apple.com","published_at":"2021-08-24 19:15:00","updated_at":"2023-11-07 03:33:00"},"problem_types":["CWE-416"],"metrics":[],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/","name":"FEDORA-2021-edf6957b7d","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 33 Update: webkit2gtk3-2.32.4-1.fc33 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://www.openwall.com/lists/oss-security/2021/10/27/4","name":"[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","refsource":"MLIST","tags":[],"title":"oss-security - Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://support.apple.com/kb/HT212824","name":"https://support.apple.com/kb/HT212824","refsource":"CONFIRM","tags":[],"title":"About the security content of iOS 12.5.5 - Apple Support","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://seclists.org/fulldisclosure/2021/Sep/39","name":"20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6","refsource":"","tags":[],"title":"Full Disclosure: APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://www.openwall.com/lists/oss-security/2021/10/27/2","name":"[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","refsource":"","tags":[],"title":"oss-security - Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.debian.org/security/2021/dsa-4976","name":"DSA-4976","refsource":"","tags":[],"title":"Debian -- Security Information -- DSA-4976-1 wpewebkit","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/","name":"FEDORA-2021-c00e45b6c0","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 34 Update: webkit2gtk3-2.32.4-1.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://seclists.org/fulldisclosure/2021/Sep/25","name":"20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8","refsource":"FULLDISC","tags":[],"title":"Full Disclosure: APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://seclists.org/fulldisclosure/2021/Sep/29","name":"20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2","refsource":"","tags":[],"title":"Full Disclosure: APPLE-SA-2021-09-13-5 Safari 14.1.2","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://www.openwall.com/lists/oss-security/2021/10/27/1","name":"[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","refsource":"MLIST","tags":[],"title":"oss-security - Re: WebKitGTK and WPE WebKit Security Advisory\n WSA-2021-0006","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/","name":"FEDORA-2021-c00e45b6c0","refsource":"","tags":[],"title":"[SECURITY] Fedora 34 Update: webkit2gtk3-2.32.4-1.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.openwall.com/lists/oss-security/2021/09/20/1","name":"[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005","refsource":"","tags":[],"title":"oss-security - WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://seclists.org/fulldisclosure/2021/Sep/50","name":"20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5","refsource":"","tags":[],"title":"Full Disclosure: APPLE-SA-2021-09-23-1 iOS 12.5.5","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://seclists.org/fulldisclosure/2021/Sep/27","name":"20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6","refsource":"","tags":[],"title":"Full Disclosure: APPLE-SA-2021-09-13-3 macOS Big Sur 11.6","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/","name":"FEDORA-2021-edf6957b7d","refsource":"","tags":[],"title":"[SECURITY] Fedora 33 Update: webkit2gtk3-2.32.4-1.fc33 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://seclists.org/fulldisclosure/2021/Sep/38","name":"20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8","refsource":"","tags":[],"title":"Full Disclosure: APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"http://www.openwall.com/lists/oss-security/2021/10/26/9","name":"[oss-security] 20211026 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","refsource":"","tags":[],"title":"oss-security - WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.debian.org/security/2021/dsa-4975","name":"DSA-4975","refsource":"DEBIAN","tags":[],"title":"Debian -- Security Information -- DSA-4975-1 webkit2gtk","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://support.apple.com/en-us/HT212804","name":"https://support.apple.com/en-us/HT212804","refsource":"","tags":[],"title":"About the security content of macOS Big Sur 11.6 - Apple Support","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://support.apple.com/en-us/HT212807","name":"https://support.apple.com/en-us/HT212807","refsource":"MISC","tags":[],"title":"About the security content of iOS 14.8 and iPadOS 14.8 - Apple Support","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2021-30858","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-30858","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"apple","cpe5":"ipados","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"apple","cpe5":"iphone_os","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"apple","cpe5":"macos","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"10.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"11.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"33","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"30858","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"34","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":{"cve_year":"2021","cve_id":"30858","cve":"CVE-2021-30858","vendorProject":"Apple","product":"iOS, iPadOS, and macOS","vulnerabilityName":"Apple iOS, iPadOS, macOS Use-After-Free Vulnerability","dateAdded":"2021-11-03","shortDescription":"Apple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.","requiredAction":"Apply updates per vendor instructions.","dueDate":"2021-11-17","knownRansomwareCampaignUse":"Unknown","notes":"https://nvd.nist.gov/vuln/detail/CVE-2021-30858","cwes":"CWE-416","catalogVersion":"2026.04.22","updated_at":"2026-04-22 20:03:11"},"epss":{"cve_year":"2021","cve_id":"30858","cve":"CVE-2021-30858","epss":"0.007940000","percentile":"0.739980000","score_date":"2026-04-21","updated_at":"2026-04-22 00:07:42"},"legacy_qids":[{"cve":"CVE-2021-30858","qid":"159448","title":"Oracle Enterprise Linux Security Update for webkit2gtk3 (ELSA-2021-4097)"},{"cve":"CVE-2021-30858","qid":"159587","title":"Oracle Enterprise Linux Security Update for webkitgtk4 (ELSA-2022-0059)"},{"cve":"CVE-2021-30858","qid":"178797","title":"Debian Security Update for webkit2gtk (DSA 4975-1)"},{"cve":"CVE-2021-30858","qid":"178800","title":"Debian Security Update for wpewebkit (DSA 4976-1)"},{"cve":"CVE-2021-30858","qid":"184336","title":"Debian Security Update for webkit2gtkwpewebkit (CVE-2021-30858)"},{"cve":"CVE-2021-30858","qid":"198513","title":"Ubuntu Security Notification for WebKitGTK Vulnerabilities (USN-5087-1)"},{"cve":"CVE-2021-30858","qid":"239766","title":"Red Hat Update for webkit2gtk3 (RHSA-2021:4097)"},{"cve":"CVE-2021-30858","qid":"239896","title":"Red Hat Update for webkit2gtk3 (RHSA-2021:4686)"},{"cve":"CVE-2021-30858","qid":"239991","title":"Red Hat Update for webkit2gtk3 (RHSA-2022:0075)"},{"cve":"CVE-2021-30858","qid":"239993","title":"Red Hat Update for webkitgtk4 (RHSA-2022:0059)"},{"cve":"CVE-2021-30858","qid":"281919","title":"Fedora Security Update for webkit2gtk3 (FEDORA-2021-c00e45b6c0)"},{"cve":"CVE-2021-30858","qid":"281959","title":"Fedora Security Update for webkit2gtk3 (FEDORA-2021-edf6957b7d)"},{"cve":"CVE-2021-30858","qid":"296061","title":"Oracle Solaris 11.4 Support Repository Update (SRU) 42.113.1 Missing (CPUJAN2022)"},{"cve":"CVE-2021-30858","qid":"296065","title":"Oracle Solaris 11.4 Support Repository Update (SRU) 39.107.1 Missing (CPUOCT2021)"},{"cve":"CVE-2021-30858","qid":"353163","title":"Amazon Linux Security Advisory for webkitgtk4 : ALAS2-2022-1747"},{"cve":"CVE-2021-30858","qid":"354436","title":"Amazon Linux Security Advisory for webkit2gtk3 : ALAS2022-2022-015"},{"cve":"CVE-2021-30858","qid":"375855","title":"Apple MacOS Big Sur 11.6 Not Installed (HT212804)"},{"cve":"CVE-2021-30858","qid":"375857","title":"Apple Safari Arbitrary Code Execution Vulnerability (HT212808)"},{"cve":"CVE-2021-30858","qid":"377406","title":"Alibaba Cloud Linux Security Update for webkit2gtk3 (ALINUX3-SA-2021:0079)"},{"cve":"CVE-2021-30858","qid":"377459","title":"Alibaba Cloud Linux Security Update for webkitgtk4 (ALINUX2-SA-2022:0003)"},{"cve":"CVE-2021-30858","qid":"502197","title":"Alpine Linux Security Update for webkit2gtk"},{"cve":"CVE-2021-30858","qid":"502394","title":"Alpine Linux Security Update for webkit2gtk"},{"cve":"CVE-2021-30858","qid":"505522","title":"Alpine Linux Security Update for webkit2gtk"},{"cve":"CVE-2021-30858","qid":"610367","title":"Apple iOS 14.8 and iPadOS 14.8 Security Update Missing"},{"cve":"CVE-2021-30858","qid":"610369","title":"Apple iOS 12.5.5 Security Update Missing (HT212824)"},{"cve":"CVE-2021-30858","qid":"690026","title":"Free Berkeley Software Distribution (FreeBSD) Security Update for webkit2-gtk3 (576aa394-1d85-11ec-8b7d-4f5b624574e2)"},{"cve":"CVE-2021-30858","qid":"710570","title":"Gentoo Linux WebkitGTK+ Multiple Vulnerabilities (GLSA 202202-01)"},{"cve":"CVE-2021-30858","qid":"751190","title":"SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2021:3282-1)"},{"cve":"CVE-2021-30858","qid":"751194","title":"SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2021:3296-1)"},{"cve":"CVE-2021-30858","qid":"751221","title":"OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2021:3353-1)"},{"cve":"CVE-2021-30858","qid":"751247","title":"OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2021:1369-1)"},{"cve":"CVE-2021-30858","qid":"751623","title":"SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2022:0142-1)"},{"cve":"CVE-2021-30858","qid":"751646","title":"SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2022:0183-1)"},{"cve":"CVE-2021-30858","qid":"751648","title":"SUSE Enterprise Linux Security Update for webkit2gtk3 (SUSE-SU-2022:0182-1)"},{"cve":"CVE-2021-30858","qid":"751659","title":"OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2022:0182-1)"},{"cve":"CVE-2021-30858","qid":"751755","title":"OpenSUSE Security Update for webkit2gtk3 (openSUSE-SU-2022:0182-2)"},{"cve":"CVE-2021-30858","qid":"940168","title":"AlmaLinux Security Update for webkit2gtk3 (ALSA-2021:4097)"},{"cve":"CVE-2021-30858","qid":"960051","title":"Rocky Linux Security Update for webkit2gtk3 (RLSA-2021:4097)"}]},"source_records":{"cve_program":{"data_type":"CVE","data_format":"MITRE","data_version":"4.0","CVE_data_meta":{"ID":"CVE-2021-30858","ASSIGNER":"product-security@apple.com","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"vendor_name":"Apple","product":{"product_data":[{"product_name":"macOS","version":{"version_data":[{"version_affected":"<","version_value":"11.6"}]}},{"product_name":"iOS","version":{"version_data":[{"version_affected":"<","version_value":"14.8"}]}}]}}]}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited."}]}]},"references":{"reference_data":[{"refsource":"MISC","url":"https://support.apple.com/en-us/HT212804","name":"https://support.apple.com/en-us/HT212804"},{"refsource":"MISC","url":"https://support.apple.com/en-us/HT212807","name":"https://support.apple.com/en-us/HT212807"},{"refsource":"FULLDISC","name":"20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6","url":"http://seclists.org/fulldisclosure/2021/Sep/27"},{"refsource":"FULLDISC","name":"20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8","url":"http://seclists.org/fulldisclosure/2021/Sep/25"},{"refsource":"FULLDISC","name":"20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2","url":"http://seclists.org/fulldisclosure/2021/Sep/29"},{"refsource":"MLIST","name":"[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005","url":"http://www.openwall.com/lists/oss-security/2021/09/20/1"},{"refsource":"FEDORA","name":"FEDORA-2021-c00e45b6c0","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BO6DMTHZR57JDBOXPSNR2MKDMCRWV265/"},{"refsource":"FULLDISC","name":"20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8","url":"http://seclists.org/fulldisclosure/2021/Sep/38"},{"refsource":"FULLDISC","name":"20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6","url":"http://seclists.org/fulldisclosure/2021/Sep/39"},{"refsource":"DEBIAN","name":"DSA-4975","url":"https://www.debian.org/security/2021/dsa-4975"},{"refsource":"DEBIAN","name":"DSA-4976","url":"https://www.debian.org/security/2021/dsa-4976"},{"refsource":"CONFIRM","name":"https://support.apple.com/kb/HT212824","url":"https://support.apple.com/kb/HT212824"},{"refsource":"FULLDISC","name":"20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5","url":"http://seclists.org/fulldisclosure/2021/Sep/50"},{"refsource":"FEDORA","name":"FEDORA-2021-edf6957b7d","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XYNV7ASK4LQVAUMJXNXBS3Z7RVDQ2N3W/"},{"refsource":"MLIST","name":"[oss-security] 20211026 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","url":"http://www.openwall.com/lists/oss-security/2021/10/26/9"},{"refsource":"MLIST","name":"[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","url":"http://www.openwall.com/lists/oss-security/2021/10/27/1"},{"refsource":"MLIST","name":"[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","url":"http://www.openwall.com/lists/oss-security/2021/10/27/2"},{"refsource":"MLIST","name":"[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006","url":"http://www.openwall.com/lists/oss-security/2021/10/27/4"}]},"description":{"description_data":[{"lang":"eng","value":"A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited."}]}},"nvd":{"publishedDate":"2021-08-24 19:15:00","lastModifiedDate":"2023-11-07 03:33:00","problem_types":["CWE-416"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL","baseScore":6.8},"severity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*","versionEndExcluding":"11.6","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*","versionStartIncluding":"13.0","versionEndExcluding":"14.8","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*","versionStartIncluding":"13.1","versionEndExcluding":"14.8","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*","versionEndExcluding":"12.5.5","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2021","CveId":"30858","Ordinal":"206136","Title":"CVE-2021-30858","CVE":"CVE-2021-30858","Year":"2021"},"notes":[{"CveYear":"2021","CveId":"30858","Ordinal":"1","NoteData":"A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.","Type":"Description","Title":null},{"CveYear":"2021","CveId":"30858","Ordinal":"2","NoteData":"2021-08-24","Type":"Other","Title":"Published"},{"CveYear":"2021","CveId":"30858","Ordinal":"3","NoteData":"2021-10-27","Type":"Other","Title":"Modified"}]}}}