CVE-2021-30764

EPSS 0.41%
Published 08.09.2021 14:15:10
Last modified 21.11.2024 06:04:40
Source product-security@apple.com
Teams watchlist Login
Open Login

Processing a maliciously crafted file may lead to arbitrary code execution. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. This issue was addressed with improved checks.

Affected products Warnungen 0 Metrics 3 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Apple ≫ iPadOS Version < 14.5

Apple ≫ iPhone OS Version < 14.5

Apple ≫ tvOS Version < 14.5

Apple ≫ watchOS Version < 7.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.41%	0.582

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

https://support.apple.com/en-us/HT212317

Vendor Advisory

https://support.apple.com/en-us/HT212323

Vendor Advisory

https://support.apple.com/en-us/HT212324

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-30764

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-30764

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-30764

EUVD