Attacker Value

High

(1 user assessed)

Exploitability

Low

(1 user assessed)

User Interaction

CVE-2021-30762

Disclosure Date: September 08, 2021 •

CVE-2021-30762 CVSS v3 Base Score: 8.8

Exploited in the Wild

Reported by gwillcox-r7 and 1 more...
View Source Details

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..

Add Assessment

gwillcox-r7 (579)

June 21, 2021 7:27pm UTC (3 years ago)•

Ratings

Attacker Value

High

Exploitability

Low

Common in enterprise Unauthenticated Vulnerable in default configuration

Technical Analysis

From what I can tell this is a UAF vulnerability in WebKit. WebKit vulns are commonly exploited in the wild and this one is no exception with https://support.apple.com/en-us/HT212548 noting that active exploitation in the wild has been discovered. It is a little odd that the patched version is noted as version 12.5.4 of iOS given the latest version is 14.6, but if you are still running on the 12.x branch, make sure to update to 12.5.4 to receive the patches for this vulnerability, particularly given it has a working exploit in the wild. This was likely used alongside the WebKit memory corruption vulnerability (see https://attackerkb.com/topics/DwxtgSIUAV/cve-2021-30761) that was patched in the same release to form a full working exploit against iOS devices.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

8.8 High

Impact Score:

5.9

Exploitability Score:

2.8

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

Required

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

apple

Products

iphone os

Exploited in the Wild

Reported by:

gwillcox-r7 indicated source as Vendor Advisory (https://support.apple.com/en-us/HT212548)

Reported: June 21, 2021 7:20pm UTC (3 years ago) • Edited 3 years ago

AttackerKB Worker indicated source as Government or Industry Alert (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)

Reported: November 08, 2024 8:13am UTC (2 weeks ago)

References

Canonical

CVE-2021-30762 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30762)

Miscellaneous

https://support.apple.com/en-us/HT212548

Rapid7

High

CVE-2021-30762

High

Low

Required

None

Network

CVE-2021-30762

Description

Add Assessment

Ratings

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Exploited in the Wild

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

High

CVE-2021-30762

High

Low

Required

None

Network

CVE-2021-30762

Description

Add Assessment

Ratings

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Exploited in the Wild

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification