CVE-2021-1879 - Apple watchOS, Apple Ipad OS and Apple iPhone OS

Moderate 6.1

This issue was addressed by improved management of object lifetimes. This issue is fixed in iOS 12.5.2, iOS 14.4.2 and iPadOS 14.4.2, watchOS 7.3.3. Processing maliciously crafted web content may lead to universal cross site scripting. Apple is aware of a report that this issue may have been actively exploited..

Affected software

Apple watchOS

Apple Ipad OS

Apple iPhone OS

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.