Unrated severityNVD Advisory· Published Sep 8, 2021· Updated Aug 3, 2024

CVE-2021-30689

Description

A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting.

Affected products

105

osv-coords103 versions
pkg:rpm/almalinux/accountsservice pkg:rpm/almalinux/accountsservice-devel pkg:rpm/almalinux/accountsservice-libs pkg:rpm/almalinux/gdm pkg:rpm/almalinux/gnome-autoar pkg:rpm/almalinux/gnome-calculator pkg:rpm/almalinux/gnome-classic-session pkg:rpm/almalinux/gnome-control-center pkg:rpm/almalinux/gnome-control-center-filesystem pkg:rpm/almalinux/gnome-online-accounts pkg:rpm/almalinux/gnome-online-accounts-devel pkg:rpm/almalinux/gnome-session pkg:rpm/almalinux/gnome-session-kiosk-session pkg:rpm/almalinux/gnome-session-wayland-session pkg:rpm/almalinux/gnome-session-xsession pkg:rpm/almalinux/gnome-settings-daemon pkg:rpm/almalinux/gnome-shell pkg:rpm/almalinux/gnome-shell-extension-apps-menu pkg:rpm/almalinux/gnome-shell-extension-auto-move-windows pkg:rpm/almalinux/gnome-shell-extension-common pkg:rpm/almalinux/gnome-shell-extension-dash-to-dock pkg:rpm/almalinux/gnome-shell-extension-desktop-icons pkg:rpm/almalinux/gnome-shell-extension-disable-screenshield pkg:rpm/almalinux/gnome-shell-extension-drive-menu pkg:rpm/almalinux/gnome-shell-extension-gesture-inhibitor pkg:rpm/almalinux/gnome-shell-extension-horizontal-workspaces pkg:rpm/almalinux/gnome-shell-extension-launch-new-instance pkg:rpm/almalinux/gnome-shell-extension-native-window-placement pkg:rpm/almalinux/gnome-shell-extension-no-hot-corner pkg:rpm/almalinux/gnome-shell-extension-panel-favorites pkg:rpm/almalinux/gnome-shell-extension-places-menu pkg:rpm/almalinux/gnome-shell-extension-screenshot-window-sizer pkg:rpm/almalinux/gnome-shell-extension-systemMonitor pkg:rpm/almalinux/gnome-shell-extension-top-icons pkg:rpm/almalinux/gnome-shell-extension-updates-dialog pkg:rpm/almalinux/gnome-shell-extension-user-theme pkg:rpm/almalinux/gnome-shell-extension-window-grouper pkg:rpm/almalinux/gnome-shell-extension-window-list pkg:rpm/almalinux/gnome-shell-extension-windowsNavigator pkg:rpm/almalinux/gnome-shell-extension-workspace-indicator pkg:rpm/almalinux/gnome-software pkg:rpm/almalinux/gnome-software-devel pkg:rpm/almalinux/gsettings-desktop-schemas pkg:rpm/almalinux/gsettings-desktop-schemas-devel pkg:rpm/almalinux/gtk3 pkg:rpm/almalinux/gtk3-devel pkg:rpm/almalinux/gtk3-immodule-xim pkg:rpm/almalinux/gtk-update-icon-cache pkg:rpm/almalinux/LibRaw pkg:rpm/almalinux/LibRaw-devel pkg:rpm/almalinux/mutter pkg:rpm/almalinux/mutter-devel pkg:rpm/almalinux/vino pkg:rpm/almalinux/webkit2gtk3 pkg:rpm/almalinux/webkit2gtk3-devel pkg:rpm/almalinux/webkit2gtk3-jsc pkg:rpm/almalinux/webkit2gtk3-jsc-devel pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.2 pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.3 pkg:rpm/suse/libsoup&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/libsoup&distro=SUSE%20Manager%20Proxy%204.0 pkg:rpm/suse/libsoup&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0 pkg:rpm/suse/libsoup&distro=SUSE%20Manager%20Server%204.0 pkg:rpm/suse/webkit2gtk3&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Proxy%204.0 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Server%204.0 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%209 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 0.6.55-2.el8+ 102 more
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 1:40.0-15.el8
- (no CPE)range: < 0.2.3-2.el8
- (no CPE)range: < 3.28.2-2.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.28.2-28.el8
- (no CPE)range: < 3.28.2-28.el8
- (no CPE)range: < 3.28.2-3.el8
- (no CPE)range: < 3.28.2-3.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.32.0-16.el8.alma
- (no CPE)range: < 3.32.2-40.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.36.1-10.el8
- (no CPE)range: < 3.36.1-10.el8
- (no CPE)range: < 3.32.0-6.el8
- (no CPE)range: < 3.32.0-6.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 0.19.5-3.el8
- (no CPE)range: < 0.19.5-3.el8
- (no CPE)range: < 3.32.2-60.el8
- (no CPE)range: < 3.32.2-60.el8
- (no CPE)range: < 3.22.0-11.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-lp152.2.16.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
Apple Inc./macOSv5
Range: unspecified
Apple Inc./iOS and iPadOScpe-rescue
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/en-us/HT212528mitrex_refsource_MISC
support.apple.com/en-us/HT212529mitrex_refsource_MISC
support.apple.com/en-us/HT212532mitrex_refsource_MISC
support.apple.com/en-us/HT212533mitrex_refsource_MISC
support.apple.com/en-us/HT212534mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000