CyberSec.Space Logo
Back to CVE Browser

CVE-2021-30762

Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
EPSS Score25.3080%
EPSS Percentile88.94th
PublishedSep 8, 2021
Last ModifiedOct 23, 2025

Vulnerability Description

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..

Affected Platforms (CPE)

๐Ÿ’ป
Apple

Iphone Os

< 12.5.4

References & Advisories

๐Ÿ”— https://support.apple.com/en-us/HT212548
๐Ÿ”— https://support.apple.com/en-us/HT212548
๐Ÿ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-30762

Related Vulnerabilities

CVE-2008-421110.0

Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iP...

CVE-2009-220410.0

Unspecified vulnerability in the CoreTelephony component in Apple iPhone OS before 3.0.1 allows remote attackers to execute arbitr...

CVE-2008-230310.0

Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitra...

CVE-2010-111910.0

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on ...