{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "macOS Catalina sans le correctif de s\u00e9curit\u00e9 2021-001",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "Safari versions ant\u00e9rieures \u00e0 14.0.3",
      "product": {
        "name": "Safari",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "macOS Big Sur versions ant\u00e9rieures \u00e0 11.2",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "macOS Mojave sans le correctif de s\u00e9curit\u00e9 2021-001",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-1778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1778"
    },
    {
      "name": "CVE-2021-1789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1789"
    },
    {
      "name": "CVE-2021-1762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1762"
    },
    {
      "name": "CVE-2021-1773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1773"
    },
    {
      "name": "CVE-2021-1761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1761"
    },
    {
      "name": "CVE-2019-20838",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-20838"
    },
    {
      "name": "CVE-2021-1775",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1775"
    },
    {
      "name": "CVE-2020-27937",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27937"
    },
    {
      "name": "CVE-2021-1738",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1738"
    },
    {
      "name": "CVE-2021-1777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1777"
    },
    {
      "name": "CVE-2021-1787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1787"
    },
    {
      "name": "CVE-2021-1766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1766"
    },
    {
      "name": "CVE-2021-1745",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1745"
    },
    {
      "name": "CVE-2021-1736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1736"
    },
    {
      "name": "CVE-2021-1764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1764"
    },
    {
      "name": "CVE-2021-1743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1743"
    },
    {
      "name": "CVE-2021-1786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1786"
    },
    {
      "name": "CVE-2021-1788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1788"
    },
    {
      "name": "CVE-2021-1737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1737"
    },
    {
      "name": "CVE-2021-1792",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1792"
    },
    {
      "name": "CVE-2020-29614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29614"
    },
    {
      "name": "CVE-2021-1785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1785"
    },
    {
      "name": "CVE-2021-1818",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1818"
    },
    {
      "name": "CVE-2021-1782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1782"
    },
    {
      "name": "CVE-2021-1793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1793"
    },
    {
      "name": "CVE-2020-29633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29633"
    },
    {
      "name": "CVE-2021-1751",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1751"
    },
    {
      "name": "CVE-2021-1797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1797"
    },
    {
      "name": "CVE-2020-29608",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29608"
    },
    {
      "name": "CVE-2021-1791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1791"
    },
    {
      "name": "CVE-2021-1871",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1871"
    },
    {
      "name": "CVE-2021-1801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1801"
    },
    {
      "name": "CVE-2021-1783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1783"
    },
    {
      "name": "CVE-2021-1870",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1870"
    },
    {
      "name": "CVE-2020-27938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27938"
    },
    {
      "name": "CVE-2021-1767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1767"
    },
    {
      "name": "CVE-2021-1771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1771"
    },
    {
      "name": "CVE-2020-15358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-15358"
    },
    {
      "name": "CVE-2021-1802",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1802"
    },
    {
      "name": "CVE-2021-1747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1747"
    },
    {
      "name": "CVE-2021-1790",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1790"
    },
    {
      "name": "CVE-2021-1765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1765"
    },
    {
      "name": "CVE-2021-1799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1799"
    },
    {
      "name": "CVE-2021-1746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1746"
    },
    {
      "name": "CVE-2021-1754",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1754"
    },
    {
      "name": "CVE-2021-1772",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1772"
    },
    {
      "name": "CVE-2021-1776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1776"
    },
    {
      "name": "CVE-2021-1753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1753"
    },
    {
      "name": "CVE-2021-1741",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1741"
    },
    {
      "name": "CVE-2021-1750",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1750"
    },
    {
      "name": "CVE-2021-1744",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1744"
    },
    {
      "name": "CVE-2021-1742",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1742"
    },
    {
      "name": "CVE-2021-1760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1760"
    },
    {
      "name": "CVE-2020-27904",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27904"
    },
    {
      "name": "CVE-2021-1757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1757"
    },
    {
      "name": "CVE-2020-25709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25709"
    },
    {
      "name": "CVE-2020-14155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-14155"
    },
    {
      "name": "CVE-2021-1768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1768"
    },
    {
      "name": "CVE-2021-1774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1774"
    },
    {
      "name": "CVE-2021-1769",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1769"
    },
    {
      "name": "CVE-2021-1759",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1759"
    },
    {
      "name": "CVE-2021-1763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1763"
    },
    {
      "name": "CVE-2021-1779",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1779"
    },
    {
      "name": "CVE-2021-1758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1758"
    },
    {
      "name": "CVE-2020-27945",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27945"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-072",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-02-02T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT212152 du 01 f\u00e9vrier 2021",
      "url": "https://support.apple.com/fr-fr/HT212152"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT212147 du 01 f\u00e9vrier 2021",
      "url": "https://support.apple.com/fr-fr/HT212147"
    }
  ]
}

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "macOS Catalina sans le correctif de s\u00e9curit\u00e9 2021-001",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "Safari versions ant\u00e9rieures \u00e0 14.0.3",
      "product": {
        "name": "Safari",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "macOS Big Sur versions ant\u00e9rieures \u00e0 11.2",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "macOS Mojave sans le correctif de s\u00e9curit\u00e9 2021-001",
      "product": {
        "name": "macOS",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-1778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1778"
    },
    {
      "name": "CVE-2021-1789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1789"
    },
    {
      "name": "CVE-2021-1762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1762"
    },
    {
      "name": "CVE-2021-1773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1773"
    },
    {
      "name": "CVE-2021-1761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1761"
    },
    {
      "name": "CVE-2019-20838",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-20838"
    },
    {
      "name": "CVE-2021-1775",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1775"
    },
    {
      "name": "CVE-2020-27937",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27937"
    },
    {
      "name": "CVE-2021-1738",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1738"
    },
    {
      "name": "CVE-2021-1777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1777"
    },
    {
      "name": "CVE-2021-1787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1787"
    },
    {
      "name": "CVE-2021-1766",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1766"
    },
    {
      "name": "CVE-2021-1745",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1745"
    },
    {
      "name": "CVE-2021-1736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1736"
    },
    {
      "name": "CVE-2021-1764",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1764"
    },
    {
      "name": "CVE-2021-1743",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1743"
    },
    {
      "name": "CVE-2021-1786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1786"
    },
    {
      "name": "CVE-2021-1788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1788"
    },
    {
      "name": "CVE-2021-1737",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1737"
    },
    {
      "name": "CVE-2021-1792",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1792"
    },
    {
      "name": "CVE-2020-29614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29614"
    },
    {
      "name": "CVE-2021-1785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1785"
    },
    {
      "name": "CVE-2021-1818",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1818"
    },
    {
      "name": "CVE-2021-1782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1782"
    },
    {
      "name": "CVE-2021-1793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1793"
    },
    {
      "name": "CVE-2020-29633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29633"
    },
    {
      "name": "CVE-2021-1751",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1751"
    },
    {
      "name": "CVE-2021-1797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1797"
    },
    {
      "name": "CVE-2020-29608",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29608"
    },
    {
      "name": "CVE-2021-1791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1791"
    },
    {
      "name": "CVE-2021-1871",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1871"
    },
    {
      "name": "CVE-2021-1801",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1801"
    },
    {
      "name": "CVE-2021-1783",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1783"
    },
    {
      "name": "CVE-2021-1870",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1870"
    },
    {
      "name": "CVE-2020-27938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27938"
    },
    {
      "name": "CVE-2021-1767",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1767"
    },
    {
      "name": "CVE-2021-1771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1771"
    },
    {
      "name": "CVE-2020-15358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-15358"
    },
    {
      "name": "CVE-2021-1802",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1802"
    },
    {
      "name": "CVE-2021-1747",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1747"
    },
    {
      "name": "CVE-2021-1790",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1790"
    },
    {
      "name": "CVE-2021-1765",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1765"
    },
    {
      "name": "CVE-2021-1799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1799"
    },
    {
      "name": "CVE-2021-1746",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1746"
    },
    {
      "name": "CVE-2021-1754",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1754"
    },
    {
      "name": "CVE-2021-1772",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1772"
    },
    {
      "name": "CVE-2021-1776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1776"
    },
    {
      "name": "CVE-2021-1753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1753"
    },
    {
      "name": "CVE-2021-1741",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1741"
    },
    {
      "name": "CVE-2021-1750",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1750"
    },
    {
      "name": "CVE-2021-1744",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1744"
    },
    {
      "name": "CVE-2021-1742",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1742"
    },
    {
      "name": "CVE-2021-1760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1760"
    },
    {
      "name": "CVE-2020-27904",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27904"
    },
    {
      "name": "CVE-2021-1757",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1757"
    },
    {
      "name": "CVE-2020-25709",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25709"
    },
    {
      "name": "CVE-2020-14155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-14155"
    },
    {
      "name": "CVE-2021-1768",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1768"
    },
    {
      "name": "CVE-2021-1774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1774"
    },
    {
      "name": "CVE-2021-1769",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1769"
    },
    {
      "name": "CVE-2021-1759",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1759"
    },
    {
      "name": "CVE-2021-1763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1763"
    },
    {
      "name": "CVE-2021-1779",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1779"
    },
    {
      "name": "CVE-2021-1758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1758"
    },
    {
      "name": "CVE-2020-27945",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27945"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-072",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-02-02T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT212152 du 01 f\u00e9vrier 2021",
      "url": "https://support.apple.com/fr-fr/HT212152"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT212147 du 01 f\u00e9vrier 2021",
      "url": "https://support.apple.com/fr-fr/HT212147"
    }
  ]
}

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Apple Inc., Fedora Project, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "Mojave \u0434\u043e 10.14.6 (MacOS), 32 (Fedora), 33 (Fedora), \u0434\u043e 14.4 (iOS), \u0434\u043e 14.4 (iPadOS), Big Sur \u0434\u043e 11.2 (MacOS), Catalina \u0434\u043e 10.15.7 (MacOS), \u0434\u043e 2.30.6 (WebKitGTK), \u0434\u043e 2.30.6 (WPE WebKit)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Apple:\nhttps://support.apple.com/en-us/HT212146\nhttps://support.apple.com/en-us/HT212147\n\n\u0414\u043b\u044f Fedora:\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/\t\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/\t\n\n\u0414\u043b\u044f WebKitGTK:\nhttps://webkitgtk.org/security/WSA-2021-0002.html",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "26.01.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "24.09.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "30.09.2021",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-04824",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2021-1870",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "MacOS, Fedora, iOS, iPadOS, WebKitGTK, WPE WebKit",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Apple Inc. MacOS Mojave \u0434\u043e 10.14.6 , Fedora Project Fedora 32 , Fedora Project Fedora 33 , Apple Inc. iOS \u0434\u043e 14.4 , Apple Inc. iPadOS \u0434\u043e 14.4 , Apple Inc. MacOS Big Sur \u0434\u043e 11.2 , Apple Inc. MacOS Catalina \u0434\u043e 10.15.7 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u044f \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446 WebKitGTK \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Apple Mac OS, iOS \u0438 iPadOS, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u044f \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446 WebKitGTK \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Apple Mac OS, iOS \u0438 iPadOS \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://support.apple.com/en-us/HT212146\nhttps://support.apple.com/en-us/HT212147\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/\t\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/\t\nhttps://webkitgtk.org/news.html\nhttps://securitylab.ru/news/515989.php\nhttps://www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,8)"
}

{
  "cisaActionDue": "2021-11-17",
  "cisaExploitAdd": "2021-11-03",
  "cisaRequiredAction": "Apply updates per vendor instructions.",
  "cisaVulnerabilityName": "Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "17AAEA98-4C05-496E-81A7-AC031FCDDDA5",
              "versionEndExcluding": "14.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "062166D7-2444-4022-B7E4-13884C43EDCA",
              "versionEndExcluding": "14.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB8A73F8-3074-4B32-B9F6-343B6B1988C5",
              "versionEndExcluding": "10.15.7",
              "versionStartIncluding": "10.15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*",
              "matchCriteriaId": "A654B8A2-FC30-4171-B0BB-366CD7ED4B6A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*",
              "matchCriteriaId": "F1F4BF7F-90D4-4668-B4E6-B06F4070F448",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:mac_os_x:10.15.7:supplemental_update:*:*:*:*:*:*",
              "matchCriteriaId": "C1C795B9-E58D-467C-83A8-2D45C792292F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "084F8722-A895-4FC2-821E-DF0B129653BC",
              "versionEndExcluding": "11.2",
              "versionStartIncluding": "11.0.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "77FB95B4-8279-4DB9-B98F-DCFB2A212668",
              "versionEndExcluding": "2.30.6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
              "matchCriteriaId": "36D96259-24BD-44E2-96D9-78CE1D41F956",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
              "matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.."
    },
    {
      "lang": "es",
      "value": "Se abord\u00f3 un problema de l\u00f3gica con unas restricciones mejoradas.\u0026#xa0;Este problema es corregido en macOS Big Sur versi\u00f3n 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS versi\u00f3n 14.4 y iPadOS versi\u00f3n 14.4.\u0026#xa0;Un atacante remoto puede conllevar a una ejecuci\u00f3n de c\u00f3digo arbitraria.\u0026#xa0;Apple tiene conocimiento de un reporte que indica que este problema puede haber sido explotado activamente."
    }
  ],
  "id": "CVE-2021-1870",
  "lastModified": "2025-10-23T18:01:44.367",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2021-04-02T19:15:20.567",
  "references": [
    {
      "source": "product-security@apple.com",
      "tags": [
        "Broken Link",
        "Mailing List"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Broken Link",
        "Mailing List"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.gentoo.org/glsa/202104-03"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/HT212146"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/HT212147"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Mailing List"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Mailing List"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.gentoo.org/glsa/202104-03"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/HT212146"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/HT212147"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-1870"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

{
  "affected": [],
  "aliases": [
    "CVE-2021-1870"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-04-02T19:15:00Z",
    "severity": "CRITICAL"
  },
  "details": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
  "id": "GHSA-f8fh-g8mv-p7hh",
  "modified": "2025-10-22T00:32:06Z",
  "published": "2022-05-24T17:46:24Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-1870"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202104-03"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT212146"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT212147"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-1870"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

{
  "GSD": {
    "alias": "CVE-2021-1870",
    "description": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
    "id": "GSD-2021-1870",
    "references": [
      "https://www.suse.com/security/cve/CVE-2021-1870.html",
      "https://www.debian.org/security/2021/dsa-4877",
      "https://access.redhat.com/errata/RHSA-2021:4381",
      "https://ubuntu.com/security/CVE-2021-1870",
      "https://advisories.mageia.org/CVE-2021-1870.html",
      "https://security.archlinux.org/CVE-2021-1870",
      "https://linux.oracle.com/cve/CVE-2021-1870.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-1870"
      ],
      "details": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
      "id": "GSD-2021-1870",
      "modified": "2023-12-13T01:23:23.665999Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cisa.gov": {
      "cveID": "CVE-2021-1870",
      "dateAdded": "2021-11-03",
      "dueDate": "2021-11-17",
      "product": "iOS",
      "requiredAction": "Apply updates per vendor instructions.",
      "shortDescription": "A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.",
      "vendorProject": "Apple",
      "vulnerabilityName": "Apple iOS Privilege Escalation and Code Execution Chain"
    },
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "product-security@apple.com",
        "ID": "CVE-2021-1870",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "iOS and iPadOS",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_value": "14.4"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "macOS",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_value": "11.2"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Apple"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited."
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://support.apple.com/en-us/HT212147",
            "refsource": "MISC",
            "url": "https://support.apple.com/en-us/HT212147"
          },
          {
            "name": "https://support.apple.com/en-us/HT212146",
            "refsource": "MISC",
            "url": "https://support.apple.com/en-us/HT212146"
          },
          {
            "name": "FEDORA-2021-864dc37032",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/"
          },
          {
            "name": "FEDORA-2021-619711d709",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/"
          },
          {
            "name": "GLSA-202104-03",
            "refsource": "GENTOO",
            "url": "https://security.gentoo.org/glsa/202104-03"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "14.4",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "14.4",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "10.15.7",
                "versionStartIncluding": "10.15",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.15.7:supplemental_update:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "11.2",
                "versionStartIncluding": "11.0.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "2.30.6",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2021-1870"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/en-us/HT212146",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://support.apple.com/en-us/HT212146"
            },
            {
              "name": "https://support.apple.com/en-us/HT212147",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://support.apple.com/en-us/HT212147"
            },
            {
              "name": "FEDORA-2021-864dc37032",
              "refsource": "FEDORA",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/"
            },
            {
              "name": "FEDORA-2021-619711d709",
              "refsource": "FEDORA",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JN6ZOD62CTO54CHTMJTHVEF6R2Y532TJ/"
            },
            {
              "name": "GLSA-202104-03",
              "refsource": "GENTOO",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://security.gentoo.org/glsa/202104-03"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2021-06-02T13:21Z",
      "publishedDate": "2021-04-02T19:15Z"
    }
  }
}

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for webkit2gtk3",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for webkit2gtk3 fixes the following issues:\n\n- Update to version 2.32.0 (bsc#1184155):\n  * Fix the authentication request port when URL omits the port.\n  * Fix iframe scrolling when main frame is scrolled in async\n  * scrolling mode.\n  * Stop using g_memdup.\n  * Show a warning message when overriding signal handler for\n  * threading suspension.\n  * Fix the build on RISC-V with GCC 11.\n  * Fix several crashes and rendering issues.\n  * Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871\n- Update in version 2.30.6 (bsc#1184262):\n  * Update user agent quirks again for Google Docs and Google Drive.\n  * Fix several crashes and rendering issues.\n  * Security fixes: CVE-2020-27918, CVE-2020-29623, CVE-2021-1765\n    CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870.\n- Update _constraints for armv6/armv7 (bsc#1182719)\n- restore NPAPI plugin support which was removed in 2.32.0\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2021-637",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_0637-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2021:0637-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PLZ5MXMQE5PW2OZS4ZK2IAEG3Y3AFJVD/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2021:0637-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PLZ5MXMQE5PW2OZS4ZK2IAEG3Y3AFJVD/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1182719",
        "url": "https://bugzilla.suse.com/1182719"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1184155",
        "url": "https://bugzilla.suse.com/1184155"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1184262",
        "url": "https://bugzilla.suse.com/1184262"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-27918 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-27918/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29623 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29623/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1765 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1765/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1788 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1788/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1789 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1789/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1799 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1799/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1801 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1801/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1844 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1844/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1870 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1870/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-1871 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-1871/"
      }
    ],
    "title": "Security update for webkit2gtk3",
    "tracking": {
      "current_release_date": "2021-04-30T19:23:01Z",
      "generator": {
        "date": "2021-04-30T19:23:01Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2021:0637-1",
      "initial_release_date": "2021-04-30T19:23:01Z",
      "revision_history": [
        {
          "date": "2021-04-30T19:23:01Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
                  "product_id": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
                  "product_id": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
                  "product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
                  "product_id": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
                  "product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
                  "product_id": "webkit-jsc-4-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
                  "product_id": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
                  "product_id": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
                "product": {
                  "name": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
                  "product_id": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
                "product": {
                  "name": "libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
                  "product_id": "libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64",
                "product": {
                  "name": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64",
                  "product_id": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.2",
                "product": {
                  "name": "openSUSE Leap 15.2",
                  "product_id": "openSUSE Leap 15.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch"
        },
        "product_reference": "libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit-jsc-4-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586"
        },
        "product_reference": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64 as component of openSUSE Leap 15.2",
          "product_id": "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        },
        "product_reference": "webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-27918",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-27918"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-27918",
          "url": "https://www.suse.com/security/cve/CVE-2020-27918"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2020-27918",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-27918"
    },
    {
      "cve": "CVE-2020-29623",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29623"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "\"Clear History and Website Data\" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. A user may be unable to fully delete browsing history.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29623",
          "url": "https://www.suse.com/security/cve/CVE-2020-29623"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2020-29623",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29623"
    },
    {
      "cve": "CVE-2021-1765",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1765"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Maliciously crafted web content may violate iframe sandboxing policy.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1765",
          "url": "https://www.suse.com/security/cve/CVE-2021-1765"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2021-1765",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1765"
    },
    {
      "cve": "CVE-2021-1788",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1788"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1788",
          "url": "https://www.suse.com/security/cve/CVE-2021-1788"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184155 for CVE-2021-1788",
          "url": "https://bugzilla.suse.com/1184155"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1788"
    },
    {
      "cve": "CVE-2021-1789",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1789"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1789",
          "url": "https://www.suse.com/security/cve/CVE-2021-1789"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2021-1789",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1789"
    },
    {
      "cve": "CVE-2021-1799",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1799"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A port redirection issue was addressed with additional port validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. A malicious website may be able to access restricted ports on arbitrary servers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1799",
          "url": "https://www.suse.com/security/cve/CVE-2021-1799"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2021-1799",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1799"
    },
    {
      "cve": "CVE-2021-1801",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1801"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Maliciously crafted web content may violate iframe sandboxing policy.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1801",
          "url": "https://www.suse.com/security/cve/CVE-2021-1801"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2021-1801",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1801"
    },
    {
      "cve": "CVE-2021-1844",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1844"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 14.4.1 and iPadOS 14.4.1, Safari 14.0.3 (v. 14610.4.3.1.7 and 15610.4.3.1.7), watchOS 7.3.2, macOS Big Sur 11.2.3. Processing maliciously crafted web content may lead to arbitrary code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1844",
          "url": "https://www.suse.com/security/cve/CVE-2021-1844"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184155 for CVE-2021-1844",
          "url": "https://bugzilla.suse.com/1184155"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1844"
    },
    {
      "cve": "CVE-2021-1870",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1870"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1870",
          "url": "https://www.suse.com/security/cve/CVE-2021-1870"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184262 for CVE-2021-1870",
          "url": "https://bugzilla.suse.com/1184262"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1870"
    },
    {
      "cve": "CVE-2021-1871",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-1871"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
          "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-1871",
          "url": "https://www.suse.com/security/cve/CVE-2021-1871"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184155 for CVE-2021-1871",
          "url": "https://bugzilla.suse.com/1184155"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.0-lp152.2.13.1.noarch",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit-jsc-4-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.0-lp152.2.13.1.x86_64",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.i586",
            "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.0-lp152.2.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-04-30T19:23:01Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2021-1871"
    }
  ]
}