Apple

iPhone OS

3848 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2021-30859

  • EPSS 0.27%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:51

A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina. A malicious application may be able to execute arbitrary code with kernel privi...

7.8

CVE-2021-30860

Warnung
  • EPSS 72.86%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 27.10.2025 17:38:22

An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code e...

6.8

CVE-2021-30863

  • EPSS 0.06%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID.

6.5

CVE-2021-30866

  • EPSS 0.1%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A device may be passively tracked by its WiFi MAC address.

5.5

CVE-2021-30867

  • EPSS 0.17%
  • Veröffentlicht 24.08.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 06:04:52

The issue was addressed with improved authentication. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to access photo metadata without needing permission to access photos.

8.8

CVE-2021-30851

  • EPSS 0.95%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.

8.8

CVE-2021-30852

  • EPSS 0.63%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution.

8.6

CVE-2021-30854

  • EPSS 0.28%
  • Veröffentlicht 24.08.2021 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:04:50

A logic issue was addressed with improved state management. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A sandboxed process may be able to circumvent sandbox restrictions.

7.5

CVE-2021-36690

Exploit
  • EPSS 0.97%
  • Veröffentlicht 24.08.2021 14:15:09
  • Zuletzt bearbeitet 03.11.2025 22:15:49

A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already ha...

6.5

CVE-2021-36976

  • EPSS 0.19%
  • Veröffentlicht 20.07.2021 07:15:07
  • Zuletzt bearbeitet 03.11.2025 22:15:49

libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).