Apple Ios 14.5 And Ipados vulnerabilities

CVE-2021-1815 [MEDIUM] CVE-2021-1815: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1815 Component: Preferences Impact: A local user may be able to modify protected parts of the file system Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2021-1820 [MEDIUM] CVE-2021-1820: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1820 Component: WebKit Impact: Processing maliciously crafted web content may result in the disclosure of process memory Description: A memory initialization issue was addressed with improved memory handling.

CVE-2020-7463 [MEDIUM] CVE-2020-7463: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2020-7463 Component: WebRTC Impact: A remote attacker may be able to cause unexpected system termination or corrupt kernel memory Description: A use after free issue was addressed with improved memory management.

CVE-2021-1739 [MEDIUM] CVE-2021-1739: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1739 Component: Preferences Impact: A local user may be able to modify protected parts of the file system Description: A parsing issue in the handling of directory paths was addressed with improved path validation.

CVE-2021-1854 [MEDIUM] CVE-2021-1854: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1854 Component: Telephony Impact: A legacy cellular network can automatically answer an incoming call when an ongoing call ends or drops. Description: A call termination issue with was addressed with improved logic.

CVE-2021-1835 [MEDIUM] CVE-2021-1835: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1835 Component: Accessibility Impact: A person with physical access to an iOS device may be able to access notes from the lock screen Description: This issue was addressed with improved checks.

CVE-2021-1832 [MEDIUM] CVE-2021-1832: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1832 Component: Kernel Impact: Copied files may not have the expected file permissions Description: The issue was addressed with improved permissions logic.

CVE-2021-30656 [MEDIUM] CVE-2021-30656: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-30656 Component: GPU Drivers Impact: A malicious application may be able to determine kernel memory layout Description: An access issue was addressed with improved memory management.

CVE-2021-1846 [MEDIUM] CVE-2021-1846: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1846 Component: CoreAudio Impact: Processing a maliciously crafted audio file may disclose restricted memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-1883 [MEDIUM] CVE-2021-1883: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1883 Component: Heimdal Impact: Processing maliciously crafted server messages may lead to heap corruption Description: This issue was addressed with improved checks.

CVE-2021-30921 [MEDIUM] CVE-2021-30921: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-30921 Component: UIKit Impact: A user's password may be visible onscreen Description: A logic issue was addressed with improved state management.

CVE-2021-1860 [MEDIUM] CVE-2021-1860: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1860 Component: Kernel Impact: A malicious application may be able to disclose kernel memory Description: A memory initialization issue was addressed with improved memory handling.

CVE-2021-1877 [MEDIUM] CVE-2021-1877: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1877 Component: Kernel Impact: A local user may be able to read kernel memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-1837 [MEDIUM] CVE-2021-1837: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1837 Component: App Store Impact: An attacker in a privileged network position may be able to alter network traffic Description: A certificate validation issue was addressed.

CVE-2021-1836 [MEDIUM] CVE-2021-1836: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1836 Component: Assets Impact: A local user may be able to create or modify privileged files Description: A logic issue was addressed with improved restrictions.

CVE-2021-1830 [MEDIUM] CVE-2021-1830: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1830 Component: Kernel Impact: A local user may be able to read kernel memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-1852 [MEDIUM] CVE-2021-1852: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1852 Component: Kernel Impact: A local user may be able to read kernel memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-1865 [MEDIUM] CVE-2021-1865: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1865 Component: Password Manager Impact: A user's password may be visible onscreen Description: An issue obscuring passwords in screenshots was addressed with improved logic.

CVE-2021-1884 [MEDIUM] CVE-2021-1884: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1884 Component: Heimdal Impact: A remote attacker may be able to cause a denial of service Description: A race condition was addressed with improved locking.

CVE-2021-1740 [MEDIUM] CVE-2021-1740: iOS 14.5 and iPadOS 14.5 Apple Security Update: About the security content of iOS 14.5 and iPadOS 14.5 Product: iOS 14.5 and iPadOS Version: 14.5 CVE: CVE-2021-1740 Component: Preferences Impact: A local user may be able to modify protected parts of the file system Description: A parsing issue in the handling of directory paths was addressed with improved path validation.