COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2021-30858

CVE-2021-30858

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-11-03
Reference
https://nvd.nist.gov/vuln/detail/CVE-2021-30858
⚡ RCE ⌖ exploited in the wild shame 65/100 rceexploited-in-wild

Apple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products

Players implicated

apple · vendoriOS, iPadOS, and macOS · product

Description

Apple iOS, iPadOS, and macOS WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.