Apple Ios 14.8 And Ipados vulnerabilities

CVE-2021-30820 [CRITICAL] CVE-2021-30820: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30820 Component: Bluetooth Impact: A remote attacker may be able to cause arbitrary code execution Description: A logic issue was addressed with improved state management.

CVE-2021-30838 [HIGH] CVE-2021-30838: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30838 Impact: A malicious application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2021-31010 [HIGH] CVE-2021-31010: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-31010 Component: Core Telephony Impact: A sandboxed process may be able to circumvent sandbox restrictions. Apple was aware of a report that this issue may have been actively exploited at the time of release. Description: A deserialization issue was addressed through improved validation.

CVE-2021-30847 [HIGH] CVE-2021-30847: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30847 Component: ImageIO Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30852 [HIGH] CVE-2021-30852: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30852 Component: Foundation Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved memory handling.

CVE-2021-30834 [HIGH] CVE-2021-30834: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30834 Component: CoreAudio Impact: Processing a malicious audio file may result in unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management.

CVE-2021-30928 [HIGH] CVE-2021-30928: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30928 Component: CoreGraphics Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved input validation.

CVE-2021-30841 [HIGH] CVE-2021-30841: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30841 Component: FontParser Impact: Processing a maliciously crafted dfont file may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30826 [HIGH] CVE-2021-30826: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30826 Component: Telephony Impact: In certain situations, the baseband would fail to enable integrity and ciphering protection Description: A logic issue was addressed with improved state management.

CVE-2021-30858 [HIGH] CVE-2021-30858: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30858 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: A use after free issue was addressed with improved memory management.

CVE-2021-30818 [HIGH] CVE-2021-30818: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30818 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved state handling.

CVE-2021-30848 [HIGH] CVE-2021-30848: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30848 Component: WebKit Impact: Processing maliciously crafted web content may lead to code execution Description: A memory corruption issue was addressed with improved memory handling.

CVE-2021-30859 [HIGH] CVE-2021-30859: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30859 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A type confusion issue was addressed with improved state handling.

CVE-2021-30857 [HIGH] CVE-2021-30857: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30857 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved locking.

CVE-2021-30843 [HIGH] CVE-2021-30843: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30843 Component: FontParser Impact: Processing a maliciously crafted dfont file may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30860 [HIGH] CVE-2021-30860: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30860 Component: CoreGraphics Impact: Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: An integer overflow was addressed with improved input validation.

CVE-2021-30846 [HIGH] CVE-2021-30846: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30846 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved memory handling.

CVE-2021-30849 [HIGH] CVE-2021-30849: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30849 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2021-30864 [HIGH] CVE-2021-30864: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30864 Component: CoreServices Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A logic issue was addressed with improved state management.

CVE-2021-30842 [HIGH] CVE-2021-30842: iOS 14.8 and iPadOS 14.8 Apple Security Update: About the security content of iOS 14.8 and iPadOS 14.8 Product: iOS 14.8 and iPadOS Version: 14.8 CVE: CVE-2021-30842 Component: FontParser Impact: Processing a maliciously crafted dfont file may lead to arbitrary code execution Description: This issue was addressed with improved checks.