CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-30804
https://notcve.org/view.php?id=CVE-2021-30804
A permissions issue was addressed with improved validation. This issue is fixed in iOS 14.7. A malicious application may be able to access Find My data. Se abordó un problema de permisos con una comprobación mejorada. Este problema se corrigió en iOS versión 14.7. • https://support.apple.com/en-us/HT212601 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-30762 – Apple iOS WebKit Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2021-30762
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. • https://support.apple.com/en-us/HT212548 https://access.redhat.com/security/cve/CVE-2021-30762 https://bugzilla.redhat.com/show_bug.cgi?id=1986898 • CWE-20: Improper Input Validation CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-30761 – Apple iOS WebKit Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2021-30761
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. • https://support.apple.com/en-us/HT212548 https://access.redhat.com/security/cve/CVE-2021-30761 https://bugzilla.redhat.com/show_bug.cgi?id=1986894 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30756
https://notcve.org/view.php?id=CVE-2021-30756
A local attacker may be able to view Now Playing information from the lock screen. This issue is fixed in macOS Big Sur 11.4, iOS 14.6 and iPadOS 14.6. A privacy issue in Now Playing was addressed with improved permissions. Un atacante local podría visualizar la información de Now Playing desde la pantalla de bloqueo. Este problema se corrigió en macOS Big Sur versión 11.4, iOS versión 14.6 e iPadOS versión 14.6. • https://support.apple.com/en-us/HT212528 https://support.apple.com/en-us/HT212529 •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-30753
https://notcve.org/view.php?id=CVE-2021-30753
Processing a maliciously crafted font may result in the disclosure of process memory. This issue is fixed in macOS Big Sur 11.4, tvOS 14.6, watchOS 7.5, iOS 14.6 and iPadOS 14.6. An out-of-bounds read was addressed with improved input validation. El procesamiento de una fuente maliciosamente diseñada puede resultar en una divulgación de la memoria del proceso. Este problema se corrigió en macOS Big Sur versión 11.4, tvOS versión 14.6, watchOS versión 7.5, iOS versión 14.6 e iPadOS versión 14.6. • https://support.apple.com/en-us/HT212528 https://support.apple.com/en-us/HT212529 https://support.apple.com/en-us/HT212532 https://support.apple.com/en-us/HT212533 • CWE-125: Out-of-bounds Read •