CVE-2021-30720 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2021-30720

CVE-2021-30720

September 08, 2021

A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. A malicious website may be able to access restricted ports on arbitrary servers.

Related Resources (9)

https://security.alpinelinux.org/vuln/CVE-2021-30720

https://support.apple.com/en-us/HT212529

https://people.canonical.com/~ubuntu-security/cve/CVE-2021-30720

https://support.apple.com/en-us/HT212534

https://support.apple.com/en-us/HT212533

https://support.apple.com/en-us/HT212528

https://access.redhat.com/security/cve/CVE-2021-30720

https://security-tracker.debian.org/tracker/CVE-2021-30720

https://support.apple.com/en-us/HT212532

Do you need more information?

CVSS v4

Base Score:

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

PASSIVE

Vulnerable System Confidentiality

LOW

Vulnerable System Integrity

LOW

Vulnerable System Availability

NONE

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

CVSS v2

Base Score:

5.8

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

Weakness Type (CWE)

Improper Authentication

CWE-287

EPSS

Base Score:

0.38

Products

Solutions

Resources

Company

Compare

Developer Tools