CyberSec.Space Logo
Back to CVE Browser

CVE-2021-30761

Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
EPSS Score82.6750%
EPSS Percentile94.77th
PublishedSep 8, 2021
Last ModifiedOct 23, 2025

Vulnerability Description

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..

Affected Platforms (CPE)

๐Ÿ’ป
Apple

Iphone Os

< 12.5.4

References & Advisories

๐Ÿ”— https://support.apple.com/en-us/HT212548
๐Ÿ”— https://support.apple.com/en-us/HT212548
๐Ÿ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-30761

Related Vulnerabilities

CVE-2008-421110.0

Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iP...

CVE-2009-220410.0

Unspecified vulnerability in the CoreTelephony component in Apple iPhone OS before 3.0.1 allows remote attackers to execute arbitr...

CVE-2008-230310.0

Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitra...

CVE-2010-111910.0

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on ...