CVE-2021-30992Apple IOS AND Ipados vulnerability

1 documents1 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 79.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple IOS AND IpadosApple IpadosApple Iphone OS
Timeline
PublishedAug 24

Description

This issue was addressed with improved handling of file metadata. This issue is fixed in iOS 15.2 and iPadOS 15.2. A user in a FaceTime call may unexpectedly leak sensitive user information through Live Photos metadata.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

NVDapple/ipados< 15.2
CVEListV5apple/ios_and_ipadosunspecified15.2
NVDapple/iphone_os< 15.2
CVE-2021-30992 — Apple IOS AND Ipados vulnerability | cvebase