A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
07 Nov 2023, 03:34
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | () https://www.debian.org/security/2022/dsa-5061 - | |
References | () https://support.apple.com/en-us/HT212975 - | |
References | () http://www.openwall.com/lists/oss-security/2022/01/21/2 - | |
References | () https://support.apple.com/en-us/HT212980 - | |
References | () https://support.apple.com/en-us/HT212976 - | |
References | () https://support.apple.com/en-us/HT212978 - | |
References | () https://www.debian.org/security/2022/dsa-5060 - | |
References | () https://support.apple.com/en-us/HT212982 - |
25 Feb 2022, 19:39
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5061 - Issue Tracking, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HQKWD4BXRDD2YGR5AVU7H5J5PIQIEU6V/ - Mailing List, Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5060 - Issue Tracking, Third Party Advisory | |
References | (MLIST) http://www.openwall.com/lists/oss-security/2022/01/21/2 - Issue Tracking, Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7EQVZ3CEMTINLBZ7PBC7WRXVEVCRHNSM/ - Issue Tracking, Mailing List, Third Party Advisory | |
First Time |
Debian
Debian debian Linux Fedoraproject fedora Fedoraproject |
|
CPE | cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* |
06 Feb 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Jan 2022, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Jan 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Jan 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Dec 2021, 17:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 9.3
v3 : 7.8 |
CWE | CWE-843 | |
References | (MISC) https://support.apple.com/en-us/HT212975 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT212982 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT212976 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT212980 - Vendor Advisory | |
References | (MISC) https://support.apple.com/en-us/HT212978 - Vendor Advisory | |
First Time |
Apple watchos
Apple ipados Apple macos Apple tvos Apple Apple iphone Os Apple safari |
|
CPE | cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:* cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* |
23 Dec 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution. | |
References |
|
24 Aug 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-08-24 19:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-30954
Mitre link : CVE-2021-30954
CVE.ORG link : CVE-2021-30954
JSON object : View
Products Affected
apple
- macos
- iphone_os
- tvos
- ipados
- safari
- watchos
debian
- debian_linux
fedoraproject
- fedora
CWE
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')