Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisaCISACISA:E1F65044D75ACB497440E12A5184D628
HistoryOct 12, 2021 - 12:00 a.m.

Apple Releases Security Update to Address CVE-2021-30883

2021-10-1200:00:00
us-cert.cisa.gov
81

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

Apple has released a security update to address a vulnerability—CVE-2021-30883—in multiple products. An attacker could exploit this vulnerability to take control of an affected system. This vulnerability has been detected in exploits in the wild.

CISA encourages users to review the Apple security page for iOS 15.0.2 and iPadOS 15.0.2 and apply the necessary updates as soon as possible.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we’d welcome your feedback.

Related

attackerkb 1
nessus 4
cve 1
prion 1
threatpost 3
cisa_kev 1
apple 6
malwarebytes 4
trellix 2
thn 3
krebs 1
qualysblog 1
openvas 2
googleprojectzero 1
attackerkb
attackerkb
CVE-2021-30883
2021-08-24 00:00:00
nessus
nessus
Apple iOS < 15.0.2 Multiple Vulnerabilities (HT212846)
2021-10-14 00:00:00
Apple iOS < 14.8.1 Multiple Vulnerabilities (HT212868)
2021-10-29 00:00:00
macOS 11.x < 11.6.1 (HT212872)
2021-10-29 00:00:00
cve
cve
CVE-2021-30883
2021-08-24 19:15:00
prion
prion
Memory corruption
2021-08-24 19:15:00
threatpost
threatpost
Apple Patches Critical iOS Bugs; One Under Attack
2021-10-27 16:14:24
Apple Releases Urgent iOS Updates to Patch New Zero-Day Bug
2021-10-12 15:17:38
Google Warns Spyware Being Deployed Against Android, iOS Users
2022-06-24 11:02:00
cisa_kev
cisa_kev
Apple Multiple Products Memory Corruption Vulnerability
2022-05-23 00:00:00
apple
apple
About the security content of iOS 15.0.2 and iPadOS 15.0.2
2021-10-11 00:00:00
About the security content of iOS 14.8.1 and iPadOS 14.8.1
2021-10-26 00:00:00
About the security content of watchOS 8.1
2021-10-25 00:00:00
malwarebytes
malwarebytes
Update now! Apple patches another actively used zero-day
2022-01-27 21:56:12
Hermit spyware is deployed with the help of a victim’s ISP
2022-06-29 10:03:54
Update now! Apple patches another privilege escalation bug in iOS and iPadOS
2021-10-12 16:07:53
trellix
trellix
The Bug Report – October Edition
2021-11-02 00:00:00
The Bug Report – October Edition
2021-11-02 00:00:00
thn
thn
Google Says ISPs Helped Attackers Infect Targeted Smartphones with Hermit Spyware
2022-06-24 11:40:00
Apple Releases iOS and macOS Updates to Patch Actively Exploited 0-Day Vulnerability
2022-01-27 05:05:00
Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability
2021-10-12 02:41:00
krebs
krebs
Patch Tuesday, October 2021 Edition
2021-10-12 19:52:09
qualysblog
qualysblog
Apple fixes zero-day in iOS and iPadOS 15.0.2 emergency release: Detect and Prioritize Vulnerabilities using VMDR for Mobile Devices
2021-10-18 07:41:18
openvas
openvas
Apple Mac OS X Security Update (HT212872)
2021-10-28 00:00:00
Apple Mac OS X Security Update (HT212869)
2022-09-22 00:00:00
googleprojectzero
googleprojectzero
The More You Know, The More You Know You Don’t Know
2022-04-19 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for CISA:E1F65044D75ACB497440E12A5184D628
attackerkb1nessus4cve1prion1threatpost3cisa_kev1apple6malwarebytes4trellix2thn3krebs1qualysblog1openvas2googleprojectzero1