CVE-2021-30825 – Apple macOS CoreML MLMODEL File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30825
This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to cause unexpected application termination or arbitrary code execution. Este problema se abordó con comprobaciones mejoradas. Este problema es corregido en iOS versión 15 y iPadOS versión 15. • http://seclists.org/fulldisclosure/2021/Oct/61 https://support.apple.com/en-us/HT212814 https://www.zerodayinitiative.com/advisories/ZDI-22-354 •
CVE-2021-30838
https://notcve.org/view.php?id=CVE-2021-30838
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engine. Se abordó un problema de corrupción de memoria con un manejo de memoria mejorado. Este problema es corregido en iOS versión 15 y iPadOS versión 15. • http://seclists.org/fulldisclosure/2021/Oct/61 https://support.apple.com/en-us/HT212814 https://support.apple.com/kb/HT212804 https://support.apple.com/kb/HT212807 •
CVE-2021-1812
https://notcve.org/view.php?id=CVE-2021-1812
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.5 and iPadOS 14.5. A malicious application may be able to execute arbitrary code with system privileges. Se abordó un problema lógico con una comprobación mejorada. Este problema se corrigió en iOS versión 14.5 e iPadOS versión 14.5. • https://support.apple.com/en-us/HT212317 •
CVE-2021-1770
https://notcve.org/view.php?id=CVE-2021-1770
A buffer overflow may result in arbitrary code execution. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A logic issue was addressed with improved state management. Un desbordamiento de búfer puede resultar en una ejecución de código arbitrario. Este problema se corrigió en macOS Big Sur versión 11.3, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2021-30659
https://notcve.org/view.php?id=CVE-2021-30659
A validation issue was addressed with improved logic. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, macOS Big Sur 11.3. A malicious application may be able to leak sensitive user information. Se abordó un problema de comprobación con una lógica mejorada. Este problema es corregido en iOS versión 14.5 y iPadOS versión 14.5, watchOS versión 7.4, macOS Big Sur versión 11.3. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 •