CVE-2021-30663
An integer overflow was addressed with improved input validation. This issue is fixed in iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, Safari 14.1.1, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution.
Published
2021-09-08T15:15:13.413
Last Modified
2025-10-23T14:55:43.020
Status
Analyzed
Source
[email protected]
Severity
CVSSv3.1: 8.8 (HIGH)
CVSSv2 Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
- Access Vector: NETWORK
- Access Complexity: MEDIUM
- Authentication: NONE
- Confidentiality Impact: PARTIAL
- Integrity Impact: PARTIAL
- Availability Impact: PARTIAL
Exploitability Score
8.6
Impact Score
6.4
Weaknesses
-
Type: Primary
CWE-190
-
Type: Secondary
CWE-190
Affected Vendors & Products
References
-
https://support.apple.com/en-us/HT212335
Vendor Advisory, Release Notes
([email protected])
-
https://support.apple.com/en-us/HT212336
Vendor Advisory, Release Notes
([email protected])
-
https://support.apple.com/en-us/HT212341
Vendor Advisory, Release Notes
([email protected])
-
https://support.apple.com/en-us/HT212532
Vendor Advisory, Release Notes
([email protected])
-
https://support.apple.com/en-us/HT212534
Vendor Advisory, Release Notes
([email protected])
-
https://support.apple.com/en-us/HT212335
Vendor Advisory, Release Notes
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT212336
Vendor Advisory, Release Notes
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT212341
Vendor Advisory, Release Notes
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT212532
Vendor Advisory, Release Notes
(af854a3a-2127-422b-91ae-364da2661108)
-
https://support.apple.com/en-us/HT212534
Vendor Advisory, Release Notes
(af854a3a-2127-422b-91ae-364da2661108)
-
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-30663
Third Party Advisory, US Government Resource
(134c704f-9b21-4f2e-91b3-4a467353bcc0)