CVE-2021-30720
published 2021-09-08CVE-2021-30720: A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS…
medium5.4CVSS 3.1
AVNACLPRNUIRSUCLILAN
A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. A malicious website may be able to access restricted ports on arbitrary servers.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_and_ipados | >= unspecified < 14.6 | 14.6 |
| apple | ipados | < 14.6 | 14.6 |
| apple | iphone_os | < 14.6 | 14.6 |
| apple | macos | >= 11.0.1 < 11.4 | 11.4 |
| apple | macos | >= unspecified < 11.4 | 11.4 |
| apple | macos | >= unspecified < 14.6 | 14.6 |
| apple | macos | >= unspecified < 7.5 | 7.5 |
| apple | macos | >= unspecified < 14.1 | 14.1 |
| apple | macos_big_sur | — | — |
| apple | safari | < 14.1.1 | 14.1.1 |
| apple | safari | — | — |
| apple | tvos | < 14.6 | 14.6 |
| apple | tvos | — | — |
| apple | watchos | < 7.5 | 7.5 |
| apple | watchos | — | — |
| debian | webkit2gtk | < webkit2gtk 2.32.3-1 (bookworm) | webkit2gtk 2.32.3-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.32.3-1 (bookworm) | webkit2gtk 2.32.3-1 (bookworm) |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
osv5.4MEDIUM