VDB
CISA-2021-1871
CISA-2021-1871
PUBLISHED
CVSS 9.8 CRITICAL
Reported by apple · Published April 2, 2021
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
Risk Scores
CVSS 3.1
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | iOS and iPadOS | unspecified |
| Apple | macOS | unspecified |
| Apple | macOS | *, * |
| Apple | iOS and iPadOS | unspecified, unspecified |
Timeline
- Apr 2, 2021 CVE Published
- Oct 21, 2025 CVE Updated
- Apr 26, 2026 Distribution Patch
- Apr 26, 2026 Security Advisory
References
- x_refsource_MISC
- x_refsource_MISC
- FEDORA-2021-864dc37032 vendor-advisoryx_refsource_FEDORA
- DSA-4923 vendor-advisoryx_refsource_DEBIAN
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-1871 url