CVE-2021-1879CISA KEVEPSS p93.4%

CVE-2021-1879Apple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability

Apple / iOS, iPadOS, and watchOS

Description

Apple iOS, iPadOS, and watchOS WebKit contain an unspecified vulnerability that allows for universal cross-site scripting (XSS) when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

Scoring

EPSS7.08% probability of exploitation · percentile 93.4% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryApple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerabilitykev-cve-2021-18790%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability
CVE
Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability
CVE
Apple iOS WebKit Buffer Overflow Vulnerability
CVE
Apple iOS WebKit Memory Corruption Vulnerability
CVE
Apple Multiple Products WebKit Memory Corruption Vulnerability
CVE
Apple Multiple Products WebKit Code Execution Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.