CVE-2021-30888
published 2021-08-24CVE-2021-30888: An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1…
high7.4CVSS 3.1
AVNACLPRNUIRSCCHINAN
An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1. A malicious website using Content Security Policy reports may be able to leak information via redirect behavior .
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_14.8.1_and_ipados | — | — |
| apple | ios_15.1_and_ipados | — | — |
| apple | ios_and_ipados | >= unspecified < 15.1 | 15.1 |
| apple | ios_and_ipados | >= unspecified < 14.8 | 14.8 |
| apple | ipad_os | < 14.8.1 | 14.8.1 |
| apple | ipados | — | — |
| apple | iphone_os | < 14.8.1 | 14.8.1 |
| apple | iphone_os | — | — |
| apple | macos | < 12.0.1 | 12.0.1 |
| apple | macos | >= unspecified < 12.0 | 12.0 |
| apple | macos | >= unspecified < 8.1 | 8.1 |
| apple | macos | >= unspecified < 15.1 | 15.1 |
| apple | macos_monterey | — | — |
| apple | safari | — | — |
| apple | tvos | < 15.1 | 15.1 |
| apple | tvos | — | — |
| apple | watchos | < 8.1 | 8.1 |
| apple | watchos | — | — |
| debian | webkit2gtk | < webkit2gtk 2.34.1-1 (bookworm) | webkit2gtk 2.34.1-1 (bookworm) |
| debian | wpewebkit | < webkit2gtk 2.34.1-1 (bookworm) | webkit2gtk 2.34.1-1 (bookworm) |
CVSS provenance
nvdv3.17.4HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
osv7.4HIGH