CVE-2021-30823: Medium severity tvos vulnerability
Published Sep 13, 2021
·Updated
A flaw was found in WebKitGTK. A logic issue was addressed with improved restrictions.
References: https://webkitgtk.org/security/WSA-2021-0007.html https://www.openwall.com/lists/oss-security/2021/12/20/6
Other sources
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.
— MITRE
WebKit. A logic issue was addressed with improved restrictions.
Credit
David Gullasch(Recurity Labs), David Gullasch(Recurity Labs), David Gullasch(Recurity Labs), David Gullasch(Recurity Labs), David Gullasch(Recurity Labs), David Gullasch(Recurity Labs), David Gullasch(Recurity Labs)
Affected Software
14 affected componentsFixes available
Apple tvOS<15
15
Apple WatchOS<8
8
Apple iCloud for Windows<13
13
Apple macOS Monterey<12.0.1
12.0.1
Apple iTunes for Windows<12.12
12.12
Apple Safari<15
15
Apple iOS<14.8
14.8
Apple iPadOS<14.8
14.8
Apple Safari<15.0.0
Apple iPadOS<14.8
Apple iPhone OS<14.8
Apple macOS<12.0.1
Apple tvOS<15.0
Apple WatchOS<8.0
Event History
Oct 28, 2021
CVE Published
via MITRE·06:17 PM
Data Sourced
via MITRE·06:17 PM
DescriptionWeakness
Dec 20, 2021
Data Sourced
via Red Hat·07:11 PM
DescriptionSeverityAffected Software
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2021-30837
- CVE-2021-30838
- CVE-2021-30866
- CVE-2021-30834
- CVE-2021-30928
- CVE-2021-30831
- CVE-2021-30840
- CVE-2021-30841
- CVE-2021-30842
- CVE-2021-30843
- CVE-2021-30852
- CVE-2021-30814
- CVE-2021-30835
- CVE-2021-30847
- CVE-2021-30857
- CVE-2013-0340
- CVE-2021-30855
- CVE-2021-30854
- CVE-2021-30850
- CVE-2021-30808
- CVE-2021-30897
- CVE-2021-30884
- CVE-2021-30818
- CVE-2021-30823
- CVE-2021-30836
- CVE-2021-30809
- CVE-2021-30846
- CVE-2021-30849
- CVE-2021-30851
- CVE-2021-30810
- CVE-2021-30811
- CVE-2021-30882
- CVE-2021-30925
- CVE-2021-30873
- CVE-2021-30876
- CVE-2021-30879
- CVE-2021-30877
- CVE-2021-30880
- CVE-2021-30994
- CVE-2021-30907
- CVE-2021-30899
- CVE-2021-30931
- CVE-2021-30917
- CVE-2021-30903
- CVE-2021-30905
- CVE-2021-30919
- CVE-2020-9846
- CVE-2021-30881
- CVE-2021-30923
- CVE-2021-30895
- CVE-2021-30896
- CVE-2021-30933
- CVE-2021-30906
- CVE-2021-30867
- CVE-2021-30922
- CVE-2021-30824
- CVE-2021-30901
- CVE-2021-30821
- CVE-2021-30883
- CVE-2021-30924
- CVE-2021-30886
- CVE-2021-30909
- CVE-2021-30916
- CVE-2021-30864
- CVE-2021-30813
- CVE-2021-31011
- CVE-2021-30904
- CVE-2021-30910
- CVE-2021-30911
- CVE-2021-30874
- CVE-2021-30920
- CVE-2021-31004
- CVE-2021-31002
- CVE-2021-30868
- CVE-2021-30912
- CVE-2021-30913
- CVE-2021-30915
- CVE-2021-31005
- CVE-2021-31008
- CVE-2021-30848
- CVE-2021-30887
- CVE-2021-30888
- CVE-2021-30889
- CVE-2021-30861
- CVE-2021-30890
- CVE-2021-30930
- CVE-2021-30908
- CVE-2021-30833
- CVE-2021-30892
- CVE-2021-30820
- CVE-2021-30860
- CVE-2021-31010
- CVE-2021-30859
- CVE-2021-30826
- CVE-2021-30858