VDB

CVE-2021-30897

CVE-2021-30897 PUBLISHED

An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin.

EPSS 0.31% · 54.6th percentile

Risk Scores

EPSS Score
0.31%
54.6th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSqtwebkit-source0, 2.3.2-0ubuntu13
Ubuntu:16.04:LTSqtwebkit-source2.3.2-0ubuntu11, 0, 2.3.2-0ubuntu10
Ubuntu:20.04:LTSqtwebkit-opensource-src5.212.0~alpha4-1, 5.212.0~alpha3-7, 5.212.0~alpha3-6
Ubuntu:22.04:LTSwebkit2gtk0
Ubuntu:16.04:LTSwebkit2gtk2.18.5-0ubuntu0.16.04.1, 2.20.3-0ubuntu0.16.04.1, 2.14.3-0ubuntu0.16.04.1
Ubuntu:18.04:LTSqtwebkit-opensource-src5.212.0~alpha2-7, *, *
Ubuntu:24.04:LTSqtwebkit-opensource-src5.212.0~alpha4-36, 0, 5.212.0~alpha4-33
Ubuntu:16.04:LTSwebkitgtk2.4.10-0ubuntu1, 0, 2.4.11-0ubuntu0.1
Ubuntu:18.04:LTSwebkitgtk2.4.11-3ubuntu3, 2.4.11-3, 0
Ubuntu:20.04:LTSwpewebkit0, 2.26.3-1, 2.26.4-1
Ubuntu:22.04:LTSwpewebkit0, 2.32.4-1, 2.34.2-1
Ubuntu:22.04:LTSqtwebkit-opensource-src0, 5.212.0~alpha4-14, 5.212.0~alpha4-13
Ubuntu:16.04:LTSqtwebkit-opensource-src5.4.2+dfsg-1ubuntu2.1, 0, *
Ubuntu:18.04:LTSwebkit2gtk2.22.5-0ubuntu0.18.04.1, 2.22.4-0ubuntu0.18.04.1, 2.22.2-0ubuntu0.18.04.2
Ubuntu:20.04:LTSwebkit2gtk2.32.4-0ubuntu0.20.04.1, 2.28.1-1, 2.32.3-0ubuntu0.20.04.1

Timeline

  • Aug 24, 2021 CVE Published
  • Dec 24, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 16, 2022 EPSS Score
  • Apr 11, 2022 EPSS Score
  • Jun 4, 2022 EPSS Score
  • Jul 29, 2022 EPSS Score
  • Sep 21, 2022 EPSS Score
  • Nov 14, 2022 EPSS Score
  • Jan 7, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 25, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›