CVE-2021-30888

Summary

An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1. A malicious website using Content Security Policy reports may be able to leak information via redirect behavior .

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 15.1affected
AppleiOS and iPadOSunspecified < 14.8affected
ApplemacOSunspecified < 12.0affected
ApplemacOSunspecified < 8.1affected
ApplemacOSunspecified < 15.1affected

Weaknesses

  • A malicious website using Content Security Policy reports may be able to leak information via redirect behavior

ADP Enrichment

CVE Program Container

Additional References

References