← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-1879 — Actively Exploited: iOS, iPadOS, and watchOS (Apple)

Apple iOS, iPadOS, and watchOS WebKit contain an unspecified vulnerability that allows for universal cross-site scripting (XSS) when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on We

CVE IDCVE-2021-1879
VendorApple
ProductiOS, iPadOS, and watchOS
Vulnerability nameApple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability
Date added2021-11-03
Remediation due2021-11-17
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionApple iOS, iPadOS, and watchOS WebKit contain an unspecified vulnerability that allows for universal cross-site scripting (XSS) when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →