Apple Ios 14.7 And Ipados vulnerabilities

CVE-2021-30797 [HIGH] CVE-2021-30797: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30797 Component: WebKit Impact: Processing maliciously crafted web content may lead to code execution Description: This issue was addressed with improved checks.

CVE-2021-30779 [HIGH] CVE-2021-30779: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30779 Component: ImageIO Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30798 [HIGH] CVE-2021-30798: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30798 Component: TCC Impact: A malicious application may be able to bypass certain Privacy preferences Description: A logic issue was addressed with improved state management.

CVE-2021-30788 [HIGH] CVE-2021-30788: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30788 Component: FontParser Impact: Processing a maliciously crafted tiff file may lead to a denial-of-service or potentially disclose memory contents Description: This issue was addressed with improved checks.

CVE-2021-30758 [HIGH] CVE-2021-30758: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30758 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved state handling.

CVE-2021-30800 [HIGH] CVE-2021-30800: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30800 Component: Wi-Fi Impact: Joining a malicious Wi-Fi network may result in a denial of service or arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30786 [HIGH] CVE-2021-30786: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30786 Component: CoreGraphics Impact: Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution Description: A race condition was addressed with improved state handling.

CVE-2021-30789 [HIGH] CVE-2021-30789: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30789 Component: CoreText Impact: Processing a maliciously crafted font file may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-30763 [MEDIUM] CVE-2021-30763: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30763 Component: ActionKit Impact: A shortcut may be able to bypass Internet permission requirements Description: An input validation issue was addressed with improved input validation.

CVE-2021-30796 [MEDIUM] CVE-2021-30796: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30796 Component: Model I/O Impact: Processing a maliciously crafted image may lead to a denial of service Description: A logic issue was addressed with improved validation.

CVE-2021-30768 [MEDIUM] CVE-2021-30768: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30768 Component: CVMS Impact: A malicious application may be able to gain root privileges Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2021-30770 [MEDIUM] CVE-2021-30770: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30770 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: A logic issue was addressed with improved validation.

CVE-2021-30769 [MEDIUM] CVE-2021-30769: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30769 Component: Kernel Impact: A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication Description: A logic issue was addressed with improved state management.

CVE-2021-30773 [MEDIUM] CVE-2021-30773: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30773 Component: Identity Service Impact: A malicious application may be able to bypass code signing checks Description: An issue in code signature validation was addressed with improved checks.

CVE-2021-30776 [MEDIUM] CVE-2021-30776: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30776 Component: CoreAudio Impact: Playing a malicious audio file may lead to an unexpected application termination Description: A logic issue was addressed with improved validation.

CVE-2021-30871 [MEDIUM] CVE-2021-30871: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30871 Component: Analytics Impact: A local attacker may be able to access analytics data Description: This issue was addressed with a new entitlement.

CVE-2021-30791 [MEDIUM] CVE-2021-30791: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30791 Component: Model I/O Impact: Processing a maliciously crafted file may disclose user information Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2021-30804 [LOW] CVE-2021-30804: iOS 14.7 and iPadOS 14.7 Apple Security Update: About the security content of iOS 14.7 and iPadOS 14.7 Product: iOS 14.7 and iPadOS Version: 14.7 CVE: CVE-2021-30804 Component: Find My Impact: A malicious application may be able to access Find My data Description: A permissions issue was addressed with improved validation.