CVE-2021-30858
Description
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.794
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.8 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.6 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.5 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.3 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.2 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.1 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.4 - Software Update | Mac |
| Multiple vulnerabilities are fixed in MacOS Big Sur 11.6.7 - Software Update | Mac |
| Web content engine library for GTK+ (USN-5087-1) libwebkit2gtk-4.0-37_2.32.4-0ubuntu0.18.04.1_i386.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libwebkit2gtk-4.0-37_2.32.4-0ubuntu0.18.04.1_amd64.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libwebkit2gtk-4.0-37_2.32.4-0ubuntu0.20.04.1_i386.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libwebkit2gtk-4.0-37_2.32.4-0ubuntu0.20.04.1_amd64.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libwebkit2gtk-4.0-37_2.32.4-0ubuntu0.21.04.1_i386.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libwebkit2gtk-4.0-37_2.32.4-0ubuntu0.21.04.1_amd64.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libjavascriptcoregtk-4.0-18_2.32.4-0ubuntu0.18.04.1_i386.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libjavascriptcoregtk-4.0-18_2.32.4-0ubuntu0.18.04.1_amd64.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libjavascriptcoregtk-4.0-18_2.32.4-0ubuntu0.20.04.1_i386.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libjavascriptcoregtk-4.0-18_2.32.4-0ubuntu0.20.04.1_amd64.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libjavascriptcoregtk-4.0-18_2.32.4-0ubuntu0.21.04.1_i386.deb | Linux |
| Web content engine library for GTK+ (USN-5087-1) libjavascriptcoregtk-4.0-18_2.32.4-0ubuntu0.21.04.1_amd64.deb | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-2.30.4-3.el8_4.i686.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-2.30.4-3.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-debugsource-2.30.4-3.el8_4.i686.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-debugsource-2.30.4-3.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-devel-2.30.4-3.el8_4.i686.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-devel-2.30.4-3.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-jsc-2.30.4-3.el8_4.i686.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-jsc-2.30.4-3.el8_4.x86_64.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-jsc-devel-2.30.4-3.el8_4.i686.rpm | Linux |
| (RHSA-2021:4097) webkit2gtk3 security and bug fix update webkit2gtk3-jsc-devel-2.30.4-3.el8_4.x86_64.rpm | Linux |
| Webkit2gtk3 update (ELSA-2021-4097) webkit2gtk3-2.30.4-3.el8_4.i686.rpm | Linux |
| Webkit2gtk3 update (ELSA-2021-4097) webkit2gtk3-2.30.4-3.el8_4.x86_64.rpm | Linux |
| Webkit2gtk3-devel update (ELSA-2021-4097) webkit2gtk3-devel-2.30.4-3.el8_4.i686.rpm | Linux |
| Webkit2gtk3-devel update (ELSA-2021-4097) webkit2gtk3-devel-2.30.4-3.el8_4.x86_64.rpm | Linux |
| Webkit2gtk3-jsc update (ELSA-2021-4097) webkit2gtk3-jsc-2.30.4-3.el8_4.i686.rpm | Linux |
| Webkit2gtk3-jsc update (ELSA-2021-4097) webkit2gtk3-jsc-2.30.4-3.el8_4.x86_64.rpm | Linux |
| Webkit2gtk3-jsc-devel update (ELSA-2021-4097) webkit2gtk3-jsc-devel-2.30.4-3.el8_4.i686.rpm | Linux |
| Webkit2gtk3-jsc-devel update (ELSA-2021-4097) webkit2gtk3-jsc-devel-2.30.4-3.el8_4.x86_64.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-2.28.2-3.el7.i686.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-2.28.2-3.el7.x86_64.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-devel-2.28.2-3.el7.i686.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-devel-2.28.2-3.el7.x86_64.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-doc-2.28.2-3.el7.noarch.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-jsc-2.28.2-3.el7.i686.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-jsc-2.28.2-3.el7.x86_64.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-jsc-devel-2.28.2-3.el7.i686.rpm | Linux |
| (RHSA-2022:0059) webkitgtk4 security update webkitgtk4-jsc-devel-2.28.2-3.el7.x86_64.rpm | Linux |
| Webkitgtk4 update (ELSA-2022-0059) webkitgtk4-2.28.2-3.el7.i686.rpm | Linux |
| Webkitgtk4 update (ELSA-2022-0059) webkitgtk4-2.28.2-3.el7.x86_64.rpm | Linux |
| Webkitgtk4-devel update (ELSA-2022-0059) webkitgtk4-devel-2.28.2-3.el7.i686.rpm | Linux |
| Webkitgtk4-devel update (ELSA-2022-0059) webkitgtk4-devel-2.28.2-3.el7.x86_64.rpm | Linux |
| Webkitgtk4-doc update (ELSA-2022-0059) webkitgtk4-doc-2.28.2-3.el7.noarch.rpm | Linux |
| Webkitgtk4-jsc update (ELSA-2022-0059) webkitgtk4-jsc-2.28.2-3.el7.i686.rpm | Linux |
| Webkitgtk4-jsc update (ELSA-2022-0059) webkitgtk4-jsc-2.28.2-3.el7.x86_64.rpm | Linux |
| Webkitgtk4-jsc-devel update (ELSA-2022-0059) webkitgtk4-jsc-devel-2.28.2-3.el7.i686.rpm | Linux |
| Webkitgtk4-jsc-devel update (ELSA-2022-0059) webkitgtk4-jsc-devel-2.28.2-3.el7.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) libjavascriptcoregtk-4_0-18-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) libwebkit2gtk-4_0-37-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) libwebkit2gtk-4_0-37-debuginfo-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) libwebkit2gtk3-lang-2.34.3-2.82.1.noarch.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) typelib-1_0-JavaScriptCore-4_0-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) typelib-1_0-WebKit2-4_0-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) typelib-1_0-WebKit2WebExtension-4_0-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) webkit2gtk-4_0-injected-bundles-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-2.82.1.x86_64.rpm | Linux |
| SUSE-SU-2022:0142-1(SUSE Linux Enterprise Server 12-SP5 ) webkit2gtk3-debugsource-2.34.3-2.82.1.x86_64.rpm | Linux |
| (RHSA-2022:0059)Moderate: security update webkitgtk4-debuginfo-2.28.2-3.el7.i686.rpm | Linux |
| (RHSA-2022:0059)Moderate: security update webkitgtk4-debuginfo-2.28.2-3.el7.x86_64.rpm | Linux |
| LibRaw update (ELSA-2021-4381) LibRaw-0.19.5-3.el8.i686.rpm | Linux |
| LibRaw update (ELSA-2021-4381) LibRaw-0.19.5-3.el8.x86_64.rpm | Linux |
| Accountsservice update (ELSA-2021-4381) accountsservice-0.6.55-2.el8.x86_64.rpm | Linux |
| Accountsservice-libs update (ELSA-2021-4381) accountsservice-libs-0.6.55-2.el8.i686.rpm | Linux |
| Accountsservice-libs update (ELSA-2021-4381) accountsservice-libs-0.6.55-2.el8.x86_64.rpm | Linux |
| Gdm update (ELSA-2021-4381) gdm-40.0-15.el8.i686.rpm | Linux |
| Gdm update (ELSA-2021-4381) gdm-40.0-15.el8.x86_64.rpm | Linux |
| Gnome-autoar update (ELSA-2021-4381) gnome-autoar-0.2.3-2.el8.i686.rpm | Linux |
| Gnome-autoar update (ELSA-2021-4381) gnome-autoar-0.2.3-2.el8.x86_64.rpm | Linux |
| Gnome-calculator update (ELSA-2021-4381) gnome-calculator-3.28.2-2.el8.x86_64.rpm | Linux |
| Gnome-classic-session update (ELSA-2021-4381) gnome-classic-session-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-control-center update (ELSA-2021-4381) gnome-control-center-3.28.2-28.el8.x86_64.rpm | Linux |
| Gnome-control-center-filesystem update (ELSA-2021-4381) gnome-control-center-filesystem-3.28.2-28.el8.noarch.rpm | Linux |
| Gnome-online-accounts update (ELSA-2021-4381) gnome-online-accounts-3.28.2-3.el8.i686.rpm | Linux |
| Gnome-online-accounts update (ELSA-2021-4381) gnome-online-accounts-3.28.2-3.el8.x86_64.rpm | Linux |
| Gnome-online-accounts-devel update (ELSA-2021-4381) gnome-online-accounts-devel-3.28.2-3.el8.i686.rpm | Linux |
| Gnome-online-accounts-devel update (ELSA-2021-4381) gnome-online-accounts-devel-3.28.2-3.el8.x86_64.rpm | Linux |
| Gnome-session update (ELSA-2021-4381) gnome-session-3.28.1-13.0.1.el8.x86_64.rpm | Linux |
| Gnome-session-kiosk-session update (ELSA-2021-4381) gnome-session-kiosk-session-3.28.1-13.0.1.el8.x86_64.rpm | Linux |
| Gnome-session-wayland-session update (ELSA-2021-4381) gnome-session-wayland-session-3.28.1-13.0.1.el8.x86_64.rpm | Linux |
| Gnome-session-xsession update (ELSA-2021-4381) gnome-session-xsession-3.28.1-13.0.1.el8.x86_64.rpm | Linux |
| Gnome-settings-daemon update (ELSA-2021-4381) gnome-settings-daemon-3.32.0-16.el8.x86_64.rpm | Linux |
| Gnome-shell update (ELSA-2021-4381) gnome-shell-3.32.2-40.el8.x86_64.rpm | Linux |
| Gnome-shell-extension-apps-menu update (ELSA-2021-4381) gnome-shell-extension-apps-menu-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-auto-move-windows update (ELSA-2021-4381) gnome-shell-extension-auto-move-windows-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-common update (ELSA-2021-4381) gnome-shell-extension-common-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-dash-to-dock update (ELSA-2021-4381) gnome-shell-extension-dash-to-dock-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-desktop-icons update (ELSA-2021-4381) gnome-shell-extension-desktop-icons-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-disable-screenshield update (ELSA-2021-4381) gnome-shell-extension-disable-screenshield-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-drive-menu update (ELSA-2021-4381) gnome-shell-extension-drive-menu-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-gesture-inhibitor update (ELSA-2021-4381) gnome-shell-extension-gesture-inhibitor-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-horizontal-workspaces update (ELSA-2021-4381) gnome-shell-extension-horizontal-workspaces-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-launch-new-instance update (ELSA-2021-4381) gnome-shell-extension-launch-new-instance-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-native-window-placement update (ELSA-2021-4381) gnome-shell-extension-native-window-placement-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-no-hot-corner update (ELSA-2021-4381) gnome-shell-extension-no-hot-corner-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-panel-favorites update (ELSA-2021-4381) gnome-shell-extension-panel-favorites-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-places-menu update (ELSA-2021-4381) gnome-shell-extension-places-menu-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-screenshot-window-sizer update (ELSA-2021-4381) gnome-shell-extension-screenshot-window-sizer-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-systemMonitor update (ELSA-2021-4381) gnome-shell-extension-systemMonitor-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-top-icons update (ELSA-2021-4381) gnome-shell-extension-top-icons-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-updates-dialog update (ELSA-2021-4381) gnome-shell-extension-updates-dialog-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-user-theme update (ELSA-2021-4381) gnome-shell-extension-user-theme-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-window-grouper update (ELSA-2021-4381) gnome-shell-extension-window-grouper-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-window-list update (ELSA-2021-4381) gnome-shell-extension-window-list-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-windowsNavigator update (ELSA-2021-4381) gnome-shell-extension-windowsNavigator-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-shell-extension-workspace-indicator update (ELSA-2021-4381) gnome-shell-extension-workspace-indicator-3.32.1-20.el8.noarch.rpm | Linux |
| Gnome-software update (ELSA-2021-4381) gnome-software-3.36.1-10.el8.x86_64.rpm | Linux |
| Gsettings-desktop-schemas update (ELSA-2021-4381) gsettings-desktop-schemas-3.32.0-6.el8.i686.rpm | Linux |
| Gsettings-desktop-schemas update (ELSA-2021-4381) gsettings-desktop-schemas-3.32.0-6.el8.x86_64.rpm | Linux |
| Gsettings-desktop-schemas-devel update (ELSA-2021-4381) gsettings-desktop-schemas-devel-3.32.0-6.el8.i686.rpm | Linux |
| Gsettings-desktop-schemas-devel update (ELSA-2021-4381) gsettings-desktop-schemas-devel-3.32.0-6.el8.x86_64.rpm | Linux |
| Gtk-update-icon-cache update (ELSA-2021-4381) gtk-update-icon-cache-3.22.30-8.el8.x86_64.rpm | Linux |
| Gtk3 update (ELSA-2021-4381) gtk3-3.22.30-8.el8.i686.rpm | Linux |
| Gtk3 update (ELSA-2021-4381) gtk3-3.22.30-8.el8.x86_64.rpm | Linux |
| Gtk3-devel update (ELSA-2021-4381) gtk3-devel-3.22.30-8.el8.i686.rpm | Linux |
| Gtk3-devel update (ELSA-2021-4381) gtk3-devel-3.22.30-8.el8.x86_64.rpm | Linux |
| Gtk3-immodule-xim update (ELSA-2021-4381) gtk3-immodule-xim-3.22.30-8.el8.x86_64.rpm | Linux |
| Mutter update (ELSA-2021-4381) mutter-3.32.2-60.el8.i686.rpm | Linux |
| Mutter update (ELSA-2021-4381) mutter-3.32.2-60.el8.x86_64.rpm | Linux |
| Vino update (ELSA-2021-4381) vino-3.22.0-11.el8.x86_64.rpm | Linux |
| Webkit2gtk3 update (ELSA-2021-4381) webkit2gtk3-2.32.3-2.el8.i686.rpm | Linux |
| Webkit2gtk3 update (ELSA-2021-4381) webkit2gtk3-2.32.3-2.el8.x86_64.rpm | Linux |
| Webkit2gtk3-devel update (ELSA-2021-4381) webkit2gtk3-devel-2.32.3-2.el8.i686.rpm | Linux |
| Webkit2gtk3-devel update (ELSA-2021-4381) webkit2gtk3-devel-2.32.3-2.el8.x86_64.rpm | Linux |
| Webkit2gtk3-jsc update (ELSA-2021-4381) webkit2gtk3-jsc-2.32.3-2.el8.i686.rpm | Linux |
| Webkit2gtk3-jsc update (ELSA-2021-4381) webkit2gtk3-jsc-2.32.3-2.el8.x86_64.rpm | Linux |
| Webkit2gtk3-jsc-devel update (ELSA-2021-4381) webkit2gtk3-jsc-devel-2.32.3-2.el8.i686.rpm | Linux |
| Webkit2gtk3-jsc-devel update (ELSA-2021-4381) webkit2gtk3-jsc-devel-2.32.3-2.el8.x86_64.rpm | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-605753 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605753 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605753 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605753 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605752 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605752 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605752 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605753 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
| PATCH-605753 | MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234