CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1816
https://notcve.org/view.php?id=CVE-2021-1816
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó un desbordamiento de búfer con una comprobación de límites mejorada. Este problema se corrigió en iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 0CVE-2021-1846
https://notcve.org/view.php?id=CVE-2021-1846
Processing a maliciously crafted audio file may disclose restricted memory. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An out-of-bounds read was addressed with improved input validation. El procesamiento de un archivo de audio diseñado maliciosamente puede divulgar la memoria restringida. Este problema se corrigió en Security Update 2021-002 Catalina, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5, macOS Big Sur versión 11.3. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 34EXPL: 0CVE-2021-1809
https://notcve.org/view.php?id=CVE-2021-1809
A memory corruption issue was addressed with improved validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. A malicious application may be able to read restricted memory. Se abordó un problema de corrupción de la memoria con una comprobación mejorada. Este problema se corrigió en Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5, macOS Big Sur versión 11.3. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 https://support.apple.com/en-us/HT212327 • CWE-787: Out-of-bounds Write •
CVSS: 8.1EPSS: 0%CPEs: 5EXPL: 0CVE-2021-1826 – webkitgtk: Logic issue leading to universal cross site scripting attack
https://notcve.org/view.php?id=CVE-2021-1826
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may lead to universal cross site scripting. Se abordó un problema lógico con restricciones mejoradas. Este problema se corrigió en macOS Big Sur versión 11.3, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 https://access.redhat.com/security/cve/CVE-2021-1826 https://bugzilla.redhat.com/show_bug.cgi?id=1986860 • CWE-20: Improper Input Validation CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-1807
https://notcve.org/view.php?id=CVE-2021-1807
A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4. A local user may be able to write arbitrary files. Se abordó un problema de comprobación con un saneo de entrada mejorado. Este problema se corrigió en iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212324 • CWE-20: Improper Input Validation •