CVE-2021-1789

Name of the Vulnerable Software and Affected Versions Safari versions prior to 14.0.3 macOS Big Sur versions prior to 11.2 Security Update versions prior to 2021-001 Catalina Security Update versions prior to 2021-001 Mojave tvOS versions prior to 14.4 watchOS versions prior to 7.3 iOS versions prior to 14.4 iPadOS versions prior to 14.4

Description The issue is related to a type confusion problem in the WebKitGTK and WPE WebKit modules, which can be exploited by a remote attacker to execute arbitrary code. Processing maliciously crafted web content may lead to arbitrary code execution.

Recommendations For Safari versions prior to 14.0.3, update to Safari 14.0.3 or later. For macOS Big Sur versions prior to 11.2, update to macOS Big Sur 11.2 or later. For Security Update versions prior to 2021-001 Catalina, apply Security Update 2021-001 Catalina or later. For Security Update versions prior to 2021-001 Mojave, apply Security Update 2021-001 Mojave or later. For tvOS versions prior to 14.4, update to tvOS 14.4 or later. For watchOS versions prior to 7.3, update to watchOS 7.3 or later. For iOS versions prior to 14.4, update to iOS 14.4 or later. For iPadOS versions prior to 14.4, update to iPadOS 14.4 or later.