RSS   Vulnerabilities for 'Iphone os'   RSS

2021-10-19
 
CVE-2021-30807

NVD-CWE-noinfo
 

 
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.5.1, iOS 14.7.1 and iPadOS 14.7.1, watchOS 7.6.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.

 
 
CVE-2021-30810

CWE-862
 

 
An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup.

 
 
CVE-2021-30811

NVD-CWE-noinfo
 

 
This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8. A local attacker may be able to read sensitive information.

 
 
CVE-2021-30815

CWE-668
 

 
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to view contacts from the lock screen.

 
 
CVE-2021-30819

CWE-125
 

 
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 15 and iPadOS 15. Processing a maliciously crafted USD file may disclose memory contents.

 
 
CVE-2021-30820

NVD-CWE-noinfo
 

 
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.8 and iPadOS 14.8. A remote attacker may be able to cause arbitrary code execution.

 
 
CVE-2021-30825

NVD-CWE-noinfo
 

 
This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to cause unexpected application termination or arbitrary code execution.

 
 
CVE-2021-30826

NVD-CWE-noinfo
 

 
A logic issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. In certain situations, the baseband would fail to enable integrity and ciphering protection.

 
 
CVE-2021-30837

NVD-CWE-noinfo
 

 
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges.

 
 
CVE-2021-30838

NVD-CWE-noinfo
 

 
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engine.

 


Copyright 2021, cxsecurity.com

 

Back to Top