A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.
| Version | Score | Severity | Vector String |
|---|---|---|---|
| 3.1 | 8.8 | High | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
| Product | Vendor | Version |
|---|---|---|
| iOS and iPadOS | Apple | < a357b63fd21e4b2791008c2175ba7a8c235ebce1 |
| macOS | Apple | < 13.7 |
| macOS | Apple | <= 4.0.49 |
| macOS | Apple | <= 6.12.* |
| macOS | Apple | < 0174a2e5770efee9dbd4b58963ed4d939298ff5e |