CVE-2021-1870
| CVE Published | 2021-04-02 |
|---|---|
| Related Vendor(s) | fedoraproject, webkitgtk, apple |
| Related Product(s) | mac_os_x, webkitgtk, ipad_os, iphone_os, macos, fedora |
| Exploitation Reported (CISA KEV) | 2021-11-03 |
| CVSS 3 Base Score | 9.8 (CRITICAL) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph