Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.APPLE_IOS_1502_CHECK.NBIN
HistoryOct 14, 2021 - 12:00 a.m.

Apple iOS < 15.0.2 Multiple Vulnerabilities (HT212846)

2021-10-1400:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

68.0%

JSON

The version of Apple iOS running on the mobile device is prior to 15.0.2. It is, therefore, affected by a vulnerability, as follows:

  • A vulnerability in IOMobileFrameBuffer allows an application to execute arbitrary code with kernel privileges. (CVE-2021-30883)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

Binary data apple_ios_1502_check.nbin
VendorProductVersionCPE
appleiphone_oscpe:/o:apple:iphone_os

Related

cisa 1
nvd 1
cve 1
attackerkb 1
cisa_kev 1
threatpost 3
prion 1
cvelist 1
apple 6
nessus 3
malwarebytes 4
trellix 2
thn 3
krebs 1
qualysblog 1
openvas 2
googleprojectzero 1
cisa
cisa
Apple Releases Security Update to Address CVE-2021-30883
2021-10-12 00:00:00
nvd
nvd
CVE-2021-30883
2021-08-24 19:15:16
cve
cve
CVE-2021-30883
2021-08-24 19:15:16
attackerkb
attackerkb
CVE-2021-30883
2021-08-24 00:00:00
cisa_kev
cisa_kev
Apple Multiple Products Memory Corruption Vulnerability
2022-05-23 00:00:00
threatpost
threatpost
Apple Patches Critical iOS Bugs; One Under Attack
2021-10-27 16:14:24
Apple Releases Urgent iOS Updates to Patch New Zero-Day Bug
2021-10-12 15:17:38
Google Warns Spyware Being Deployed Against Android, iOS Users
2022-06-24 11:02:00
prion
prion
Memory corruption
2021-08-24 19:15:00
cvelist
cvelist
CVE-2021-30883
2021-08-24 18:49:47
apple
apple
About the security content of iOS 15.0.2 and iPadOS 15.0.2
2021-10-11 00:00:00
About the security content of iOS 14.8.1 and iPadOS 14.8.1
2021-10-26 00:00:00
About the security content of watchOS 8.1
2021-10-25 00:00:00
nessus
nessus
Apple iOS < 14.8.1 Multiple Vulnerabilities (HT212868)
2021-10-29 00:00:00
macOS 11.x < 11.6.1 (HT212872)
2021-10-29 00:00:00
macOS 12.x < 12.0.1 (HT212869)
2021-10-29 00:00:00
malwarebytes
malwarebytes
Update now! Apple patches another actively used zero-day
2022-01-27 21:56:12
Hermit spyware is deployed with the help of a victim’s ISP
2022-06-29 10:03:54
Update now! Apple patches another privilege escalation bug in iOS and iPadOS
2021-10-12 16:07:53
trellix
trellix
The Bug Report – October Edition
2021-11-02 00:00:00
The Bug Report – October Edition
2021-11-02 00:00:00
thn
thn
Google Says ISPs Helped Attackers Infect Targeted Smartphones with Hermit Spyware
2022-06-24 11:40:00
Apple Releases iOS and macOS Updates to Patch Actively Exploited 0-Day Vulnerability
2022-01-27 05:05:00
Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability
2021-10-12 02:41:00
krebs
krebs
Patch Tuesday, October 2021 Edition
2021-10-12 19:52:09
qualysblog
qualysblog
Apple fixes zero-day in iOS and iPadOS 15.0.2 emergency release: Detect and Prioritize Vulnerabilities using VMDR for Mobile Devices
2021-10-18 07:41:18
openvas
openvas
Apple Mac OS X Security Update (HT212872)
2021-10-28 00:00:00
Apple Mac OS X Security Update (HT212869)
2022-09-22 00:00:00
googleprojectzero
googleprojectzero
The More You Know, The More You Know You Don’t Know
2022-04-19 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

68.0%

JSON
Related for APPLE_IOS_1502_CHECK.NBIN
cisa1nvd1cve1attackerkb1cisa_kev1threatpost3prion1cvelist1apple6nessus3malwarebytes4trellix2thn3krebs1qualysblog1openvas2googleprojectzero1