Published: 08/09/2021 Updated: 16/09/2021

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An attacker with JavaScript execution may be able to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple ipados
apple iphone os
apple tvos
apple watchos

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2021-04-26-5 watchOS 74   From: Apple Product Security ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2021-04-26-1 iOS 145 and iPadOS 145   From: Apple Prod ...

layout title image description default Mistune Bug /assets/thumbnailpng Mistune is a remote exploit demostrated at TianfuCup 2020 It consists of two bugs that were introduced by iOS 3 and iOS 6 respectively What's Mistune? Mistune is a remote exploit targeting iOS 142 on iPhone 11, successfully demostrated by @codecolorist at TianfuCup

CWE-416 https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://nvd.nist.gov https://github.com/ChiChou/mistune http://seclists.org/fulldisclosure/2021/Apr/56

CVE-2021-1864

Vulnerability Summary

Vulnerability Trend

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect