PT-2021-13556 · Apple+9 · Apple Macos+9

Eliya Stein

·

Published

2021-02-01

·

Updated

2022-02-17

·

CVE-2021-1765

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions: macOS versions prior to Big Sur 11.2 Security Update versions prior to 2021-001 Catalina Security Update versions prior to 2021-001 Mojave
Description: The issue allows maliciously crafted web content to violate iframe sandboxing policy. This is addressed with improved iframe sandbox enforcement.
Recommendations: For macOS versions prior to Big Sur 11.2, update to macOS Big Sur 11.2 or later. For Security Update versions prior to 2021-001 Catalina, apply Security Update 2021-001 Catalina or later. For Security Update versions prior to 2021-001 Mojave, apply Security Update 2021-001 Mojave or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

ALSA-2021:4381
ALT-PU-2021-1527
ALT-PU-2021-1876
ALT-PU-2021-1972
ALT-PU-2021-2007
ALT-PU-2021-2009
ALT-PU-2021-2141
CESA-2021_4381
CVE-2021-1765
DSA-4877-1
MGASA-2021-0181
OPENSUSE-SU-2021:0637-1
OPENSUSE-SU-2021_0637-1
OPENSUSE-SU-2021_0825-1
OPENSUSE-SU-2022:0182-1
OPENSUSE-SU-2022_0182-1
OPENSUSE-SU-2022_0182-2
RHSA-2021:4381
RHSA-2021_4381
RHSA-2025:10364
RLSA-2021:4381
SUSE-SU-2021:1430-1
SUSE-SU-2021:1499-1
SUSE-SU-2021:1990-1
SUSE-SU-2022:0142-1
SUSE-SU-2022:0182-1
SUSE-SU-2022:0182-2
SUSE-SU-2022:0183-1
USN-4894-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Apple Macos
Red Hat
Rocky Linux
Suse
Ubuntu