Vulnerability CVE-2021-30734

Vulnerability CVE-2021-30734

Published: 2021-09-08

Description:

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to arbitrary code execution.

Type:

CWE-787

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.8/10	6.4/10	8.6/10

Exploit range	Attack complexity	Authentication
Remote	Medium	No required
Confidentiality impact	Integrity impact	Availability impact
Partial	Partial	Partial

Affected software
Apple -> Safari
Apple -> Ipad os
Apple -> Iphone os
Apple -> Mac os
Apple -> TVOS
Apple -> Watchos

References:

https://support.apple.com/en-us/HT212529

https://support.apple.com/en-us/HT212528

https://support.apple.com/en-us/HT212534

https://support.apple.com/en-us/HT212532

https://support.apple.com/en-us/HT212533

Copyright 2024, cxsecurity.com