CVE-2021-30838 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-30838 PUBLISHED CVSS 7.800000190734863 HIGH

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engine.

EPSS 0.23% · 46.2th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

0.23%

46.2th percentile

Affected Products

Vendor	Product	Versions
apple	macos	11.0
apple	ipados	0
apple	iphone_os	0
Apple	iOS and iPadOS	*

Timeline

Sep 21, 2021 CVE Published
Oct 20, 2021 EPSS Score
Oct 21, 2021 EPSS Score
Dec 15, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 5, 2022 EPSS Score
May 31, 2022 EPSS Score
Jul 26, 2022 EPSS Score
Sep 20, 2022 EPSS Score
Nov 15, 2022 EPSS Score
Jan 10, 2023 EPSS Score

References

https://support.apple.com/en-us/HT212818 advisory
https://support.apple.com/en-us/HT212819 advisory
https://support.apple.com/en-us/HT212816 advisory
https://support.apple.com/en-us/HT212814 advisory
https://support.apple.com/en-us/HT212815 advisory
https://support.apple.com/kb/HT212804 url
https://support.apple.com/kb/HT212807 url
20211027 APPLE-SA-2021-10-26-9 Additional information for APPLE-SA-2021-09-20-1 iOS 15 and iPadOS 15 mailing-list
https://nvd.nist.gov/vuln/detail/CVE-2021-30838 advisory

Open in Interactive Console →