Unrated severityNVD Advisory· Published Sep 8, 2021· Updated Aug 3, 2024
CVE-2021-30744
CVE-2021-30744
Description
Description: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting.
Affected products
106- osv-coords104 versionspkg:rpm/almalinux/accountsservicepkg:rpm/almalinux/accountsservice-develpkg:rpm/almalinux/accountsservice-libspkg:rpm/almalinux/gdmpkg:rpm/almalinux/gnome-autoarpkg:rpm/almalinux/gnome-calculatorpkg:rpm/almalinux/gnome-classic-sessionpkg:rpm/almalinux/gnome-control-centerpkg:rpm/almalinux/gnome-control-center-filesystempkg:rpm/almalinux/gnome-online-accountspkg:rpm/almalinux/gnome-online-accounts-develpkg:rpm/almalinux/gnome-sessionpkg:rpm/almalinux/gnome-session-kiosk-sessionpkg:rpm/almalinux/gnome-session-wayland-sessionpkg:rpm/almalinux/gnome-session-xsessionpkg:rpm/almalinux/gnome-settings-daemonpkg:rpm/almalinux/gnome-shellpkg:rpm/almalinux/gnome-shell-extension-apps-menupkg:rpm/almalinux/gnome-shell-extension-auto-move-windowspkg:rpm/almalinux/gnome-shell-extension-commonpkg:rpm/almalinux/gnome-shell-extension-dash-to-dockpkg:rpm/almalinux/gnome-shell-extension-desktop-iconspkg:rpm/almalinux/gnome-shell-extension-disable-screenshieldpkg:rpm/almalinux/gnome-shell-extension-drive-menupkg:rpm/almalinux/gnome-shell-extension-gesture-inhibitorpkg:rpm/almalinux/gnome-shell-extension-horizontal-workspacespkg:rpm/almalinux/gnome-shell-extension-launch-new-instancepkg:rpm/almalinux/gnome-shell-extension-native-window-placementpkg:rpm/almalinux/gnome-shell-extension-no-hot-cornerpkg:rpm/almalinux/gnome-shell-extension-panel-favoritespkg:rpm/almalinux/gnome-shell-extension-places-menupkg:rpm/almalinux/gnome-shell-extension-screenshot-window-sizerpkg:rpm/almalinux/gnome-shell-extension-systemMonitorpkg:rpm/almalinux/gnome-shell-extension-top-iconspkg:rpm/almalinux/gnome-shell-extension-updates-dialogpkg:rpm/almalinux/gnome-shell-extension-user-themepkg:rpm/almalinux/gnome-shell-extension-window-grouperpkg:rpm/almalinux/gnome-shell-extension-window-listpkg:rpm/almalinux/gnome-shell-extension-windowsNavigatorpkg:rpm/almalinux/gnome-shell-extension-workspace-indicatorpkg:rpm/almalinux/gnome-softwarepkg:rpm/almalinux/gnome-software-develpkg:rpm/almalinux/gsettings-desktop-schemaspkg:rpm/almalinux/gsettings-desktop-schemas-develpkg:rpm/almalinux/gtk3pkg:rpm/almalinux/gtk3-develpkg:rpm/almalinux/gtk3-immodule-ximpkg:rpm/almalinux/gtk-update-icon-cachepkg:rpm/almalinux/LibRawpkg:rpm/almalinux/LibRaw-develpkg:rpm/almalinux/mutterpkg:rpm/almalinux/mutter-develpkg:rpm/almalinux/vinopkg:rpm/almalinux/webkit2gtk3pkg:rpm/almalinux/webkit2gtk3-develpkg:rpm/almalinux/webkit2gtk3-jscpkg:rpm/almalinux/webkit2gtk3-jsc-develpkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/libsoup&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/libsoup&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/libsoup&distro=SUSE%20Manager%20Proxy%204.0pkg:rpm/suse/libsoup&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0pkg:rpm/suse/libsoup&distro=SUSE%20Manager%20Server%204.0pkg:rpm/suse/webkit2gtk3&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Proxy%204.0pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Manager%20Server%204.0pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 0.6.55-2.el8+ 103 more
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 0.6.55-2.el8
- (no CPE)range: < 1:40.0-15.el8
- (no CPE)range: < 0.2.3-2.el8
- (no CPE)range: < 3.28.2-2.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.28.2-28.el8
- (no CPE)range: < 3.28.2-28.el8
- (no CPE)range: < 3.28.2-3.el8
- (no CPE)range: < 3.28.2-3.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.28.1-13.el8
- (no CPE)range: < 3.32.0-16.el8.alma
- (no CPE)range: < 3.32.2-40.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.32.1-20.el8
- (no CPE)range: < 3.36.1-10.el8
- (no CPE)range: < 3.36.1-10.el8
- (no CPE)range: < 3.32.0-6.el8
- (no CPE)range: < 3.32.0-6.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 3.22.30-8.el8
- (no CPE)range: < 0.19.5-3.el8
- (no CPE)range: < 0.19.5-3.el8
- (no CPE)range: < 3.32.2-60.el8
- (no CPE)range: < 3.32.2-60.el8
- (no CPE)range: < 3.22.0-11.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.3-2.el8
- (no CPE)range: < 2.32.4-1.1
- (no CPE)range: < 2.32.3-lp152.2.16.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.62.2-17.8.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-9.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-3.77.3
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- (no CPE)range: < 2.32.3-2.66.1
- Range: unspecified
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- support.apple.com/en-us/HT212528mitrex_refsource_MISC
- support.apple.com/en-us/HT212529mitrex_refsource_MISC
- support.apple.com/en-us/HT212532mitrex_refsource_MISC
- support.apple.com/en-us/HT212533mitrex_refsource_MISC
- support.apple.com/en-us/HT212534mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.