CVE-2021-30825

Опубликовано: 19 окт. 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to cause unexpected application termination or arbitrary code execution.

Ссылки

http://seclists.org/fulldisclosure/2021/Oct/61
Mailing List
Third Party Advisory
https://support.apple.com/en-us/HT212814
Release Notes
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-22-354/
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2021/Oct/61
Mailing List
Third Party Advisory
https://support.apple.com/en-us/HT212814
Release Notes
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-22-354/
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*

Версия до 15.0 (исключая)

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 15.0 (исключая)

EPSS

Процентиль: 22%

0.00073

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-xmf6-v6j7-w4fp

github

больше 3 лет назад