Vulnerabilities > CVE-2021-30897 - Unspecified vulnerability in Apple products

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
apple
NVD
Published: 2021-08-24
Updated: 2023-11-07

Summary

An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin.

Vulnerable Configurations

Part Description Count
OS
Apple
402

References