cbcvebase.
CVE-2021-1846
published 2021-09-08

CVE-2021-1846: Processing a maliciously crafted audio file may disclose restricted memory. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5…

medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
Processing a maliciously crafted audio file may disclose restricted memory. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An out-of-bounds read was addressed with improved input validation.

Affected

21 ranges
VendorProductVersion rangeFixed in
appleios_14.5_and_ipados
appleios_and_ipados>= unspecified < 14.514.5
appleipados< 14.514.5
appleiphone_os< 14.514.5
applemac_os_x
applemac_os_x
applemac_os_x
applemac_os_x
applemac_os_x
applemac_os_x
applemac_os_x
applemac_os_x
applemacos>= 11.0 < 11.311.3
applemacos>= unspecified < 11.311.3
applemacos>= unspecified < 20212021
applemacos_big_sur
applesecurity_update_2021-002_catalina
appletvos< 14.514.5
appletvos>= unspecified < 14.514.5
applewatchos< 7.47.4
applewatchos>= unspecified < 7.47.4