Apple Ios 15 And Ipados vulnerabilities

CVE-2021-30842 [HIGH] CVE-2021-30842: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30842 Component: FontParser Impact: Processing a maliciously crafted dfont file may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30834 [HIGH] CVE-2021-30834: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30834 Component: CoreAudio Impact: Processing a malicious audio file may result in unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management.

CVE-2021-30825 [HIGH] CVE-2021-30825: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30825 Component: CoreML Impact: A local attacker may be able to cause unexpected application termination or arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2021-30851 [HIGH] CVE-2021-30851: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30851 Component: WebKit Impact: Processing maliciously crafted web content may lead to code execution Description: A memory corruption vulnerability was addressed with improved locking.

CVE-2021-30928 [HIGH] CVE-2021-30928: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30928 Component: CoreGraphics Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: A memory corruption issue was addressed with improved input validation.

CVE-2021-30849 [HIGH] CVE-2021-30849: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30849 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2021-30841 [HIGH] CVE-2021-30841: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30841 Component: FontParser Impact: Processing a maliciously crafted dfont file may lead to arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2013-0340 [MEDIUM] CVE-2013-0340: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2013-0340 Component: Kernel Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved locking.

CVE-2021-30866 [MEDIUM] CVE-2021-30866: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30866 Impact: A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engine Description: A memory corruption issue was addressed with improved memory handling.

CVE-2021-30831 [MEDIUM] CVE-2021-30831: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30831 Component: FontParser Impact: Processing a maliciously crafted font may result in the disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-30819 [MEDIUM] CVE-2021-30819: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30819 Component: Model I/O Impact: Processing a maliciously crafted USD file may disclose memory contents Description: An out-of-bounds read was addressed with improved input validation.

CVE-2021-30897 [MEDIUM] CVE-2021-30897: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30897 Component: WebKit Impact: A malicious website may exfiltrate data cross-origin Description: An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented.

CVE-2021-30884 [MEDIUM] CVE-2021-30884: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30884 Component: WebKit Impact: Visiting a maliciously crafted website may reveal a user's browsing history Description: The issue was resolved with additional restrictions on CSS compositing.

CVE-2021-30870 [MEDIUM] CVE-2021-30870: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30870 Component: Quick Look Impact: Previewing an html file attached to a note may unexpectedly contact remote servers Description: A logic issue existed in the handling of document loads. This issue was addressed with improved state management.

CVE-2021-30863 [MEDIUM] CVE-2021-30863: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30863 Component: Face ID Impact: A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID Description: This issue was addressed by improving Face ID anti-spoofing models.

CVE-2021-30898 [MEDIUM] CVE-2021-30898: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30898 Component: Privacy Impact: A malicious application may be able to access some of the user's Apple ID information, or recent in-app search terms Description: An access issue was addressed with additional sandbox restrictions on third party applications.

CVE-2021-30930 [MEDIUM] CVE-2021-30930: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30930 Component: WebRTC Impact: Visiting a maliciously crafted website may lead to the disclosure of sensitive user information Description: A logic issue was addressed with improved restrictions.

CVE-2021-30867 [MEDIUM] CVE-2021-30867: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30867 Component: Foundation Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved memory handling.

CVE-2021-30808 [MEDIUM] CVE-2021-30808: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30808 Component: Sandbox Impact: A malicious application may be able to modify protected parts of the file system Description: This issue was addressed with improved checks.

CVE-2021-30855 [MEDIUM] CVE-2021-30855: iOS 15 and iPadOS 15 Apple Security Update: About the security content of iOS 15 and iPadOS 15 Product: iOS 15 and iPadOS Version: 15 CVE: CVE-2021-30855 Component: Preferences Impact: An application may be able to access restricted files Description: A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks.