8349 matches found
CVE-2021-1794
CVE-2021-1794 affects Apple iOS/iPadOS Bluetooth, where an out-of-bounds read was addressed by input validation fixes. Impact: remote code execution possibility. Version fix: iOS 14.4 / iPadOS 14.4. Documented in Apple HT212146 and corroborated by NVD/Red Hat entries; no exploit details provided ...
CVE-2021-1794
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution...
CVE-2021-1789
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to...
CVE-2021-1789
The CVE-2021-1789 entry refers to a type-confusion vulnerability in WebKitGTK and WebKit prior to 2.30.6 that could allow remote attackers to execute arbitrary code by processing malicious web content. Connected advisories (Arch Linux ASA-202103-24/ASA-202103-25 and ALAS/ALPINE entries) confirm t...
CVE-2021-1792
CVE-2021-1792 is an out-of-bounds read in Apple's CoreText/TFF parsing that could allow remote code execution. Fixed in macOS Big Sur 11.2 and Security Update 2021-001 for Catalina/Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4; root cause described as improved bounds checking. ZDI note...
CVE-2021-1788
CVE-2021-1788 : A use-after-free in WebKitGTK/WebKit leads to arbitrary code execution when processing malicious web content. Fixes are documented in macOS/iOS/Safari updates (macOS Big Sur 11.2, Security Update 2021-001 Catalina, Mojave; Safari 14.0.3; iOS 14.4; tvOS 14.4; watchOS 7.3), and in W...
CVE-2021-1785
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code...
CVE-2021-1785
CVE-2021-1785 describes an out-of-bounds read that was addressed by improved input validation in Apple platforms. The fix applies to macOS Big Sur 11.2, Security Update 2021-001 for Catalina and Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4, and iPadOS 14.4. The vulnerability could allow arbitrary cod...
CVE-2021-1783
CVE-2021-1783 is an Apple ImageIO-related vulnerability affecting macOS Big Sur 11.2 and prior macOS versions with corresponding Security Updates (Catalina 11.2, Mojave 11.2, watchOS 7.3, tvOS 14.4, iOS 14.4, iPadOS 14.4). The issue is described as an access/memory management problem in ImageIO w...
CVE-2021-1786
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A local user may be able to create or modify system files...
CVE-2021-1786
CVE-2021-1786 describes a logic issue addressed with improved state management that could allow a local user to create or modify system files. Affected products/versions include macOS Big Sur 11.2 and Security Update 2021-001 for Catalina and Mojave, as well as watchOS 7.3, tvOS 14.4, iOS 14.4, a...
CVE-2021-1781
CVE-2021-1781 is a privacy issue in how Apple devices handle Contact cards. The flaw could allow a malicious application to leak sensitive user information. The vulnerability is mitigated by state-management improvements and is fixed in macOS Big Sur 11.2, Security Update 2021-001 for Catalina an...
CVE-2021-1778
An out-of-bounds read issue existed in the curl. This issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafte...
CVE-2021-1778
CVE-2021-1778 describes an out-of-bounds read in curl triggered while processing a malicious image. The issue is addressed by improved bounds checking and is fixed in Apple platforms: macOS Big Sur 11.2, Catalina Mojave/Big Sur security updates, and iOS/watchOS/tvOS updates (Security Update 2021-...
CVE-2021-1780
CVE-2021-1780 is a memory initialization issue in Bluetooth on Apple devices, addressed in iOS 14.4 and iPadOS 14.4. The vulnerability allows a privileged attacker to cause a denial of service via memory handling weaknesses, as described in the NVD entry and Apple’s HT212146 documentation. The is...
CVE-2021-1780
A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 14.4 and iPadOS 14.4. An attacker in a privileged position may be able to perform a denial of service attack...
CVE-2021-1776
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted font file may lead to arbitra...
CVE-2021-1769
A logic issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious attacker with arbitrary read and write capability may be able to bypas...
CVE-2021-1764
CVE-2021-1764 is a use-after-free vulnerability that Apple fixed via memory-management improvements in macOS Big Sur 11.2, Catalina Mojave Security Updates 2021-001, watchOS 7.3, tvOS 14.4, iOS/iPadOS 14.4. Affected impact is denial of service when exploited remotely; no exploit details provided ...
CVE-2021-1766
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to a denial of service...