VDB
CVE-2021-30819
CVE-2021-30819
PUBLISHED
CVSS 5.5 MEDIUM
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 15 and iPadOS 15. Processing a maliciously crafted USD file may disclose memory contents.
EPSS 0.25% · 47.9th percentile
Risk Scores
CVSS v3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
0.25%
47.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | ipados | 0 |
| Apple | iOS and iPadOS | unspecified |
| apple | macos | 0 |
| apple | iphone_os | 0 |
Timeline
- Sep 21, 2021 CVE Published
- Oct 20, 2021 EPSS Score
- Dec 15, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 9, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jun 2, 2022 EPSS Score
- Jul 29, 2022 EPSS Score
- Sep 23, 2022 EPSS Score
- Nov 18, 2022 EPSS Score
- Jan 14, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://support.apple.com/en-us/HT212818 advisory
- https://support.apple.com/en-us/HT212819 advisory
- https://support.apple.com/en-us/HT212816 advisory
- https://support.apple.com/en-us/HT212814 advisory
- https://support.apple.com/en-us/HT212815 advisory
- https://support.apple.com/kb/HT212804 url
- 20211027 APPLE-SA-2021-10-26-9 Additional information for APPLE-SA-2021-09-20-1 iOS 15 and iPadOS 15 mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2021-30819 advisory