CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30837 – Apple Security Advisory 2021-10-26-11
https://notcve.org/view.php?id=CVE-2021-30837
22 Sep 2021 — A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de consumo de memoria con una administración de memoria mejorada. Este problema es corregido en iOS versión 15 y iPadOS versión 15, watchOS versión 8, tvOS versión 15. • http://seclists.org/fulldisclosure/2021/Oct/61 •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2021-30811 – Apple Security Advisory 2021-10-26-9
https://notcve.org/view.php?id=CVE-2021-30811
22 Sep 2021 — This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8. A local attacker may be able to read sensitive information. Este problema se abordó con controles mejorados. Este problema es corregido en iOS versión 15 y iPadOS versión 15, watchOS versión 8. • http://seclists.org/fulldisclosure/2021/Oct/61 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30825 – Apple macOS CoreML MLMODEL File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30825
22 Sep 2021 — This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to cause unexpected application termination or arbitrary code execution. Este problema se abordó con comprobaciones mejoradas. Este problema es corregido en iOS versión 15 y iPadOS versión 15. • http://seclists.org/fulldisclosure/2021/Oct/61 •
CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30838 – Apple Security Advisory 2021-10-26-9
https://notcve.org/view.php?id=CVE-2021-30838
22 Sep 2021 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engine. Se abordó un problema de corrupción de memoria con un manejo de memoria mejorado. Este problema es corregido en iOS versión 15 y iPadOS versión 15. • http://seclists.org/fulldisclosure/2021/Oct/61 •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2021-30841 – Apple Security Advisory 2021-10-26-11
https://notcve.org/view.php?id=CVE-2021-30841
22 Sep 2021 — This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution. Este problema es corregido con comprobaciones mejoradas. Este problema es corregido en iOS versión 14.8 y iPadOS versión 14.8, macOS Big Sur versión 11.6, Security Update 2021-005 Catalina, tvOS versión 15, iOS versión 15 y iPadOS versió... • http://seclists.org/fulldisclosure/2021/Oct/61 •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2021-1812
https://notcve.org/view.php?id=CVE-2021-1812
08 Sep 2021 — A logic issue was addressed with improved validation. This issue is fixed in iOS 14.5 and iPadOS 14.5. A malicious application may be able to execute arbitrary code with system privileges. Se abordó un problema lógico con una comprobación mejorada. Este problema se corrigió en iOS versión 14.5 e iPadOS versión 14.5. • https://support.apple.com/en-us/HT212317 •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-1770
https://notcve.org/view.php?id=CVE-2021-1770
08 Sep 2021 — A buffer overflow may result in arbitrary code execution. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A logic issue was addressed with improved state management. Un desbordamiento de búfer puede resultar en una ejecución de código arbitrario. Este problema se corrigió en macOS Big Sur versión 11.3, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5. • https://support.apple.com/en-us/HT212317 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 2.4EPSS: 0%CPEs: 2EXPL: 0CVE-2021-1863
https://notcve.org/view.php?id=CVE-2021-1863
08 Sep 2021 — An issue existed with authenticating the action triggered by an NFC tag. The issue was addressed with improved action authentication. This issue is fixed in iOS 14.5 and iPadOS 14.5. A person with physical access to an iOS device may be able to place phone calls to any phone number. Se presentaba un problema con la autenticación de la acción desencadenada por una etiqueta NFC. • https://support.apple.com/en-us/HT212317 • CWE-287: Improper Authentication •
CVSS: 2.4EPSS: 0%CPEs: 2EXPL: 0CVE-2021-1862
https://notcve.org/view.php?id=CVE-2021-1862
08 Sep 2021 — Description: A person with physical access may be able to access contacts. This issue is fixed in iOS 14.5 and iPadOS 14.5. Impact: An issue with Siri search access to information was addressed with improved logic. Descripción: Una persona con acceso físico puede ser capaz de acceder a los contactos. Este problema se corrigió en iOS versión 14.5 e iPadOS versión 14.5. • https://support.apple.com/en-us/HT212317 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-1833
https://notcve.org/view.php?id=CVE-2021-1833
08 Sep 2021 — This issue was addressed with improved checks. This issue is fixed in iOS 14.5 and iPadOS 14.5. An application may be able to gain elevated privileges. Se abordó este problema con comprobaciones mejoradas. Este problema se corrigió en iOS versión 14.5 e iPadOS versión 14.5. • https://support.apple.com/en-us/HT212317 •