CVE-2021-30823
EUVD-2021-1774028.10.2021, 19:15
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| apple | safari | 𝑥 < 15.0.0 |
| apple | ipados | 𝑥 < 14.8 |
| apple | iphone_os | 𝑥 < 14.8 |
| apple | macos | 𝑥 < 12.0.1 |
| apple | tvos | 𝑥 < 15.0 |
| apple | watchos | 𝑥 < 8.0 |
𝑥
= Vulnerable software versions
Debian Releases
Debian Product | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| webkit2gtk |
| ||||||||||||||
| wpewebkit |
|
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| qtwebkit-opensource-src |
| ||||||||||||||||||||||
| qtwebkit-source |
| ||||||||||||||||||||||
| webkit2gtk |
| ||||||||||||||||||||||
| webkitgtk |
| ||||||||||||||||||||||
| wpewebkit |
|
References