CVE-2021-30764

EPSS 0.41%
Veröffentlicht 08.09.2021 14:15:10
Zuletzt bearbeitet 21.11.2024 06:04:40
Quelle product-security@apple.com
Teams Watchlist Login
Unerledigt Login

Processing a maliciously crafted file may lead to arbitrary code execution. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. This issue was addressed with improved checks.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apple ≫ iPadOS Version < 14.5

Apple ≫ iPhone OS Version < 14.5

Apple ≫ tvOS Version < 14.5

Apple ≫ watchOS Version < 7.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.41%	0.582

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

https://support.apple.com/en-us/HT212317

Vendor Advisory

https://support.apple.com/en-us/HT212323

Vendor Advisory

https://support.apple.com/en-us/HT212324

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-30764

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-30764

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-30764

EUVD