Back to search
CVE-2021-30858
Published: Aug 24, 2021
Modified: Oct 21, 2025
PUBLISHED
Description
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
| Vendor | Product | Versions |
|---|---|---|
Apple | macOS | affected unspecified - < 11.6 |
Apple | iOS | affected unspecified - < 14.8 |
References
https://support.apple.com/en-us/HT212804
x_refsource_MISC
https://support.apple.com/en-us/HT212807
x_refsource_MISC
20210917 APPLE-SA-2021-09-13-3 macOS Big Sur 11.6
mailing-list
x_refsource_FULLDISC
20210917 APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8
mailing-list
x_refsource_FULLDISC
20210917 APPLE-SA-2021-09-13-5 Safari 14.1.2
mailing-list
x_refsource_FULLDISC
[oss-security] 20210920 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005
mailing-list
x_refsource_MLIST
FEDORA-2021-c00e45b6c0
vendor-advisory
x_refsource_FEDORA
20210921 APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8
mailing-list
x_refsource_FULLDISC
20210921 APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6
mailing-list
x_refsource_FULLDISC
DSA-4975
vendor-advisory
x_refsource_DEBIAN
DSA-4976
vendor-advisory
x_refsource_DEBIAN
https://support.apple.com/kb/HT212824
x_refsource_CONFIRM
20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5
mailing-list
x_refsource_FULLDISC
FEDORA-2021-edf6957b7d
vendor-advisory
x_refsource_FEDORA
[oss-security] 20211026 WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
mailing-list
x_refsource_MLIST
[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
mailing-list
x_refsource_MLIST
[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
mailing-list
x_refsource_MLIST
[oss-security] 20211027 Re: WebKitGTK and WPE WebKit Security Advisory WSA-2021-0006
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now