cbcvebase.
CVE-2021-1811
published 2021-09-08

CVE-2021-1811: A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.11.3 for Windows, Security Update 2021-002 Catalina, Security…

medium6.5CVSS 3.1
AVNACLPRNUIRSUCHINAN
A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.11.3 for Windows, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iCloud for Windows 12.3, macOS Big Sur 11.3, watchOS 7.4, tvOS 14.5, iOS 14.5 and iPadOS 14.5. Processing a maliciously crafted font may result in the disclosure of process memory.

Affected

22 ranges
VendorProductVersion rangeFixed in
appleicloud< 12.312.3
appleicloud_for_windows>= unspecified < 12.312.3
appleios_14.5_and_ipados
appleios_and_ipados>= unspecified < 14.514.5
appleipados< 14.514.5
appleiphone_os< 14.514.5
appleitunes< 12.11.312.11.3
appleitunes_for_windows>= unspecified < 12.1112.11
applemac_os_x
applemac_os_x
applemac_os_x
applemac_os_x10.14 – 10.14.5
applemac_os_x10.15 – 10.15.5
applemacos>= 11.0 < 11.311.3
applemacos>= unspecified < 11.311.3
applemacos>= unspecified < 20212021
applemacos_big_sur
applesecurity_update_2021-002_catalina
appletvos< 14.514.5
appletvos>= unspecified < 14.514.5
applewatchos< 7.47.4
applewatchos>= unspecified < 7.47.4