Apple iPadOS vulnerabilities
1,835 known vulnerabilities affecting apple/ipados.
Total CVEs
1,835
CISA KEV
79
actively exploited
Public exploits
8
Exploited in wild
62
Severity breakdown
CRITICAL105HIGH806MEDIUM800LOW124
Vulnerabilities
Page 71 of 92
CVE-2021-30886HIGHCVSS 7.8fixed in 15.12021-08-24
CVE-2021-30886 [HIGH] CWE-416 CVE-2021-30886: A use after free issue was addressed with improved memory management. This issue is fixed in macOS M
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. An application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30858HIGHCVSS 8.8KEV≥ 13.1, < 14.82021-08-24
CVE-2021-30858 [HIGH] CWE-416 CVE-2021-30858: A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
nvd
CVE-2021-30883HIGHCVSS 7.8KEVfixed in 14.8.1≥ 15.0, < 15.0.22021-08-24
CVE-2021-30883 [HIGH] CWE-787 CVE-2021-30883: A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, macOS Big Sur 11.6.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have b
nvd
CVE-2021-30936HIGHCVSS 8.8fixed in 15.22021-08-24
CVE-2021-30936 [HIGH] CWE-416 CVE-2021-30936: A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2021-30907HIGHCVSS 7.8v15.02021-08-24
CVE-2021-30907 [HIGH] CWE-190 CVE-2021-30907: An integer overflow was addressed through improved input validation. This issue is fixed in iOS 15.1
An integer overflow was addressed through improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A malicious application may be able to elevate privileges.
nvd
CVE-2021-30881HIGHCVSS 7.8fixed in 15.12021-08-24
CVE-2021-30881 [HIGH] CWE-20 CVE-2021-30881: An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15
An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Unpacking a maliciously crafted archive may lead to arbitrary code execution.
nvd
CVE-2021-30952HIGHCVSS 7.8KEVfixed in 15.22021-08-24
CVE-2021-30952 [HIGH] CWE-190 CVE-2021-30952: An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 15.2,
An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2021-30979HIGHCVSS 7.8fixed in 15.22021-08-24
CVE-2021-30979 [HIGH] CWE-120 CVE-2021-30979: A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mo
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution.
nvd
CVE-2021-30955HIGHCVSS 7.0fixed in 15.22021-08-24
CVE-2021-30955 [HIGH] CWE-362 CVE-2021-30955: A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 1
A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30951HIGHCVSS 8.8fixed in 15.22021-08-24
CVE-2021-30951 [HIGH] CWE-416 CVE-2021-30951: A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd
CVE-2021-30926HIGHCVSS 7.8fixed in 14.8.12021-08-24
CVE-2021-30926 [HIGH] CWE-787 CVE-2021-30926: Description: A memory corruption issue in the processing of ICC profiles was addressed with improved
Description: A memory corruption issue in the processing of ICC profiles was addressed with improved input validation. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Processing a maliciously crafted image may lead to arbitrary code execution.
nvd
CVE-2021-30945HIGHCVSS 7.8fixed in 15.22021-08-24
CVE-2021-30945 [HIGH] CVE-2021-30945: This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A local attacker may be able to elevate their privileges.
nvd
CVE-2021-30919HIGHCVSS 7.8v15.02021-08-24
CVE-2021-30919 [HIGH] CWE-787 CVE-2021-30919: An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 15.1
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Processing a maliciously crafted PDF may lead to arbitrary code execution.
nvd
CVE-2021-30939HIGHCVSS 7.8fixed in 15.22021-08-24
CVE-2021-30939 [HIGH] CWE-125 CVE-2021-30939: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing a maliciously crafted image may lead to arbitrary code execution.
nvd
CVE-2021-30991HIGHCVSS 7.8fixed in 15.22021-08-24
CVE-2021-30991 [HIGH] CWE-125 CVE-2021-30991: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.2 a
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.2 and iPadOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30874HIGHCVSS 7.5fixed in 15.02021-08-24
CVE-2021-30874 [HIGH] CWE-862 CVE-2021-30874: An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 a
An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A VPN configuration may be installed by an app without user permission.
nvd
CVE-2021-30928HIGHCVSS 7.8fixed in 14.82021-08-24
CVE-2021-30928 [HIGH] CWE-787 CVE-2021-30928: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.6, watchOS 8, tvOS 15, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15. Processing a maliciously crafted image may lead to arbitrary code execution.
nvd
CVE-2021-30914HIGHCVSS 7.8fixed in 15.12021-08-24
CVE-2021-30914 [HIGH] CWE-787 CVE-2021-30914: A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 1
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1. An application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30949HIGHCVSS 7.8fixed in 15.22021-08-24
CVE-2021-30949 [HIGH] CWE-787 CVE-2021-30949: A memory corruption issue was addressed with improved state management. This issue is fixed in macOS
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2021-30954HIGHCVSS 7.8fixed in 15.22021-08-24
CVE-2021-30954 [HIGH] CWE-843 CVE-2021-30954: A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2
A type confusion issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.
nvd