exploitDog

GHSA-m2m5-p4p4-3w6r

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An out-of-bounds read was addressed with improved input validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted font file may lead to arbitrary code execution.

An out-of-bounds read was addressed with improved input validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted font file may lead to arbitrary code execution.

Ссылки

EPSS

Процентиль: 66%

0.00502

Низкий

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2021-1881

CVSS3: 7.8

nvd

больше 4 лет назад

An out-of-bounds read was addressed with improved input validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted font file may lead to arbitrary code execution.

EPSS

Процентиль: 66%

0.00502

Низкий

CVE ID

Дефекты

CWE-125