Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAppleCVELIST:CVE-2021-1881
HistorySep 08, 2021 - 2:47 p.m.

CVE-2021-1881

2021-09-0814:47:49
apple
www.cve.org
7
out-of-bounds read
input validation
security update
font file
arbitrary code execution
catalina
mojave
ios
ipados
watchos
tvos
macos big sur

AI Score

8.2

Confidence

High

EPSS

0.002

Percentile

51.5%

JSON

An out-of-bounds read was addressed with improved input validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted font file may lead to arbitrary code execution.

CNA Affected

[
  {
    "product": "iOS and iPadOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "14.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "tvOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "14.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "watchOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "7.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "11.3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "2021",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "macOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "2021",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

nvd 1
prion 1
zdi 1
cve 1
openvas 3
apple 6
nessus 3
nvd
nvd
CVE-2021-1881
2021-09-08 15:15:12
prion
prion
Input validation
2021-09-08 15:15:00
zdi
zdi
Apple macOS libFontParser OTF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
2021-05-20 00:00:00
cve
cve
CVE-2021-1881
2021-09-08 15:15:12
openvas
openvas
Apple Mac OS X Security Update (HT212327)
2022-09-22 00:00:00
Apple Mac OS X Security Update (HT212326)
2022-09-02 00:00:00
Apple Mac OS X Security Update (HT212325)
2022-09-02 00:00:00
apple
apple
About the security content of Security Update 2021-003 Mojave
2021-04-26 00:00:00
About the security content of Security Update 2021-002 Catalina
2021-04-26 00:00:00
About the security content of tvOS 14.5
2021-04-26 00:00:00
nessus
nessus
macOS 10.14.x < 10.14.6 Security Update 2021-003 Mojave (HT212327)
2021-04-28 00:00:00
macOS 10.15.x < 10.15.7 Security Update 2021-002 Catalina (HT212326)
2021-04-28 00:00:00
macOS 11.x < 11.3 (HT212325)
2021-04-28 00:00:00

AI Score

8.2

Confidence

High

EPSS

0.002

Percentile

51.5%

JSON
Related for CVELIST:CVE-2021-1881
nvd1prion1zdi1cve1openvas3apple6nessus3