6.5

CVE-2021-1801

This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Maliciously crafted web content may violate iframe sandboxing policy.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPad OS Version < 14.4
AppleiPhone OS Version < 14.4
ApplemacOS Version >= 11.0.1 < 11.2
AppletvOS Version < 14.4
ApplewatchOS Version < 7.3
FedoraprojectFedora Version32
FedoraprojectFedora Version33
WebkitgtkWebkitgtk Version < 2.30.6
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.52% 0.712
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 2.8 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://security.gentoo.org/glsa/202104-03
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/
https://support.apple.com/en-us/HT212147
Vendor Advisory
https://support.apple.com/en-us/HT212146
Vendor Advisory
https://support.apple.com/en-us/HT212148
Vendor Advisory
https://support.apple.com/en-us/HT212149
Vendor Advisory