Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
383
VMScore

CVE-2021-1846

Published: 08/09/2021 Updated: 17/09/2021
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Summary

Processing a maliciously crafted audio file may disclose restricted memory. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An out-of-bounds read was addressed with improved input validation.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple mac os x 10.15

apple mac os x 10.15.7

apple mac os x 10.15.6

apple macos

apple iphone os

apple tvos

apple mac os x 10.15.1

apple mac os x 10.15.2

apple mac os x 10.15.3

apple mac os x 10.15.4

apple mac os x 10.15.5

apple watchos

apple ipados

Mailing Lists

Full Disclosure: APPLE-SA-2021-04-26-2 macOS Big Sur 11.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-04-26-2 macOS Big Sur 113 macOS Big Sur 113 addresses the following issues Information about the security content is also available at supportapplecom/HT212325 APFS Available for: macOS Big Sur Impact: A local attacker may be able to elevate their privileges Description: ...
Full Disclosure: APPLE-SA-2021-04-26-1 iOS 14.5 and iPadOS 14.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-04-26-1 iOS 145 and iPadOS 145 iOS 145 and iPadOS 145 addresses the following issues Information about the security content is also available at supportapplecom/HT212317 Accessibility Available for: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad ...
Full Disclosure: APPLE-SA-2021-04-26-5 watchOS 7.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-04-26-5 watchOS 74 watchOS 74 addresses the following issues Information about the security content is also available at supportapplecom/HT212324 AppleMobileFileIntegrity Available for: Apple Watch Series 3 and later Impact: A malicious application may be able to bypass ...
Full Disclosure: APPLE-SA-2021-04-26-6 tvOS 14.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-04-26-6 tvOS 145 tvOS 145 addresses the following issues Information about the security content is also available at supportapplecom/HT212323 AppleMobileFileIntegrity Available for: Apple TV 4K and Apple TV HD Impact: A malicious application may be able to bypass Privacy ...

References

CWE-125https://support.apple.com/en-us/HT212317https://support.apple.com/en-us/HT212325https://support.apple.com/en-us/HT212326https://support.apple.com/en-us/HT212323https://support.apple.com/en-us/HT212324https://nvd.nist.govhttp://seclists.org/fulldisclosure/2021/Apr/50
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-33545CVE-2024-35725CVE-2024-32704overflowfile uploadCVE-2024-0230CVE-2024-32705CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook