CVE-2021-30836 Information
Jun 07, 2022
cve
Description
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.8 and iPadOS 14.8 tvOS 15 watchOS 8 iOS 15 and iPadOS 15. Processing a maliciously crafted audio file may disclose restricted memory.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Reference
https://support.apple.com/en-us/HT212819 https://support.apple.com/en-us/HT212807 https://support.apple.com/en-us/HT212815 https://support.apple.com/en-us/HT212814 https://support.apple.com/kb/HT212869 https://support.apple.com/kb/HT212816 http://www.openwall.com/lists/oss-security/2021/12/20/6
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
REQUIRED
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
NONE
Base Score
NONE
Base Severity
5.5
Share on: