← Back

CVE-2021-30881

nvd nist
Published: Aug 24, 2021Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Unpacking a maliciously crafted archive may lead to arbitrary code execution.

Affected (16)

Apple
6 products
Ipados
Iphone Os
Mac Os X
Macos
Tvos
Watchos
Configuration A
16 vulnerable
Vulnerable SoftwareAffected Versions
Ipados
Before 15.1
Iphone Os
Before 15.1
Apple
Mac Os X
Before 10.15.7
Mac Os X
Version 10.15.7
Mac Os X
Version 10.15.7 security_update_2020-001
Mac Os X
Version 10.15.7 security_update_2021-001
Mac Os X
Version 10.15.7 security_update_2021-002
Mac Os X
Version 10.15.7 security_update_2021-003
Mac Os X
Version 10.15.7 security_update_2021-004
Mac Os X
Version 10.15.7 security_update_2021-005
Mac Os X
Version 10.15.7 security_update_2021-006
Mac Os X
Version 10.15.7 supplemental_update
Apple
Macos
From 11.0 to 11.6.1
Macos
Version 12.0
Tvos
Before 15.1
Watchos
Before 8.1

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (12)

Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.