VDB

CVE-2021-1871

CVE-2021-1871 PUBLISHED KEV

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..

EPSS 0.48% · 65.5th percentile

Risk Scores

EPSS Score
0.48%
65.5th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSqtwebkit-opensource-src*, *, 5.212.0~alpha2-7build2
Ubuntu:18.04:LTSwebkitgtk2.4.11-3ubuntu2, 2.4.11-3ubuntu3, 2.4.11-3
Ubuntu:16.04:LTSqtwebkit-source2.3.2-0ubuntu10, 2.3.2-0ubuntu11, 0
Ubuntu:18.04:LTSwebkit2gtk2.28.4-0ubuntu0.18.04.1, 2.28.3-0ubuntu0.18.04.1, 2.28.0-0ubuntu0.18.04.3
Ubuntu:20.04:LTSwpewebkit0, 2.28.0-1, 2.28.1-1
Ubuntu:24.04:LTSqtwebkit-opensource-src5.212.0~alpha4-33, 0, 5.212.0~alpha4-33build1
Ubuntu:16.04:LTSqtwebkit-opensource-src*, 0, *
Ubuntu:22.04:LTSwpewebkit2.36.0-2ubuntu2, 2.34.6-1, 2.34.4-1
Ubuntu:20.04:LTSqtwebkit-opensource-src5.212.0~alpha4-1ubuntu1, *, *
Ubuntu:22.04:LTSqtwebkit-opensource-src5.212.0~alpha4-12, 0, 5.212.0~alpha4-13
Ubuntu:16.04:LTSwebkit2gtk2.18.4-0ubuntu0.16.04.1, 2.14.2-0ubuntu0.16.04.1, 2.14.3-0ubuntu0.16.04.1
Ubuntu:18.04:LTSqtwebkit-source2.3.2-0ubuntu13, 0
Ubuntu:16.04:LTSwebkitgtk2.4.11-0ubuntu0.1, 2.4.10-0ubuntu1, 2.4.9-2ubuntu2
Ubuntu:20.04:LTSwebkit2gtk2.28.1-1, 2.30.6-0ubuntu0.20.04.1, 2.26.3-1ubuntu2

Timeline

  • Jan 26, 2021 PoC Published
  • Feb 2, 2021 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 2, 2021 EPSS Score
  • Jun 22, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 25, 2021 EPSS Score
  • Nov 3, 2021 CISA KEV Added
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 27, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›