ID

VAR-202104-0647


CVE

CVE-2021-1782


TITLE

Apple Kernel Competitive conditional vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-202101-2422

DESCRIPTION

A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited.. Apple iOS is an operating system developed by Apple (Apple) for mobile devices. There is a security vulnerability in Apple iOS. Please keep an eye on CNNVD or manufacturer announcements. Alternatively, on your watch, select "My Watch > General > About". -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2021-02-01-3 Additional information for APPLE-SA-2021-01-26-2 tvOS 14.4 tvOS 14.4 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT212149. Analytics Available for: Apple TV 4K and Apple TV HD Impact: A remote attacker may be able to cause a denial of service Description: This issue was addressed with improved checks. CVE-2021-1761: Cees Elzinga Entry added February 1, 2021 APFS Available for: Apple TV 4K and Apple TV HD Impact: A local user may be able to read arbitrary files Description: The issue was addressed with improved permissions logic. CVE-2021-1797: Thomas Tempelmann Entry added February 1, 2021 CoreAnimation Available for: Apple TV 4K and Apple TV HD Impact: A malicious application could execute arbitrary code leading to compromise of user information Description: A memory corruption issue was addressed with improved state management. CVE-2021-1760: @S0rryMybad of 360 Vulcan Team Entry added February 1, 2021 CoreAudio Available for: Apple TV 4K and Apple TV HD Impact: Processing maliciously crafted web content may lead to code execution Description: An out-of-bounds write was addressed with improved input validation. CVE-2021-1747: JunDong Xie of Ant Security Light-Year Lab Entry added February 1, 2021 CoreGraphics Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted font file may lead to arbitrary code execution Description: An out-of-bounds write issue was addressed with improved bounds checking. CVE-2021-1776: Ivan Fratric of Google Project Zero Entry added February 1, 2021 CoreMedia Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation. CVE-2021-1759: Hou JingYi (@hjy79425575) of Qihoo 360 CERT Entry added February 1, 2021 CoreText Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted text file may lead to arbitrary code execution Description: A stack overflow was addressed with improved input validation. CVE-2021-1772: Mickey Jin of Trend Micro Entry added February 1, 2021 CoreText Available for: Apple TV 4K and Apple TV HD Impact: A remote attacker may be able to cause arbitrary code execution Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2021-1792: Mickey Jin & Junzhi Lu of Trend Micro Entry added February 1, 2021 Crash Reporter Available for: Apple TV 4K and Apple TV HD Impact: A local user may be able to create or modify system files Description: A logic issue was addressed with improved state management. CVE-2021-1786: Csaba Fitzl (@theevilbit) of Offensive Security Entry added February 1, 2021 Crash Reporter Available for: Apple TV 4K and Apple TV HD Impact: A local attacker may be able to elevate their privileges Description: Multiple issues were addressed with improved logic. CVE-2021-1787: James Hutchins Entry added February 1, 2021 FairPlay Available for: Apple TV 4K and Apple TV HD Impact: A malicious application may be able to disclose kernel memory Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. CVE-2021-1791: Junzhi Lu (@pwn0rz), Qi Sun & Mickey Jin of Trend Micro Entry added February 1, 2021 FontParser Available for: Apple TV 4K and Apple TV HD Impact: A remote attacker may be able to cause arbitrary code execution Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2021-1758: Peter Nguyen of STAR Labs Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to a denial of service Description: This issue was addressed with improved checks. CVE-2021-1766: Danny Rosseau of Carve Systems Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation. CVE-2021-1785: Xingwei Lin of Ant Security Light-Year Lab Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: An out-of-bounds write was addressed with improved input validation. CVE-2021-1744: Xingwei Lin of Ant Security Light-Year Lab Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: A remote attacker may be able to cause unexpected application termination or arbitrary code execution Description: A logic issue was addressed with improved state management. CVE-2021-1818: Xingwei Lin from Ant-financial Light-Year Security Lab Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: This issue was addressed with improved checks. CVE-2021-1746: Xingwei Lin of Ant Security Light-Year Lab, and Mickey Jin & Qi Sun of Trend Micro CVE-2021-1793: Xingwei Lin of Ant Security Light-Year Lab Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to a denial of service Description: A logic issue was addressed with improved state management. CVE-2021-1773: Xingwei Lin of Ant Security Light-Year Lab Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2021-1741: Xingwei Lin of Ant Security Light-Year Lab CVE-2021-1743: Xingwei Lin of Ant Security Light-Year Lab, and Mickey Jin & Junzhi Lu of Trend Micro Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to a denial of service Description: An out-of-bounds read issue existed in the curl. CVE-2021-1778: Xingwei Lin of Ant Security Light-Year Lab Entry added February 1, 2021 ImageIO Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted image may lead to arbitrary code execution Description: An access issue was addressed with improved memory management. CVE-2021-1783: Xingwei Lin of Ant Security Light-Year Lab Entry added February 1, 2021 IOSkywalkFamily Available for: Apple TV 4K and Apple TV HD Impact: A local attacker may be able to elevate their privileges Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2021-1757: Proteas and Pan ZhenPeng (@Peterpan0927) of Alibaba Security Entry added February 1, 2021 iTunes Store Available for: Apple TV 4K and Apple TV HD Impact: Processing a maliciously crafted URL may lead to arbitrary javascript code execution Description: A validation issue was addressed with improved input sanitization. CVE-2021-1748: CodeColorist of Ant-Financial Light-Year Labs Entry added February 1, 2021 Kernel Available for: Apple TV 4K and Apple TV HD Impact: A remote attacker may be able to cause a denial of service Description: A use after free issue was addressed with improved memory management. CVE-2021-1764: Maxime Villard (m00nbsd) Entry added February 1, 2021 Kernel Available for: Apple TV 4K and Apple TV HD Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple issues were addressed with improved logic. CVE-2021-1750: @0xalsr Entry added February 1, 2021 Kernel Available for: Apple TV 4K and Apple TV HD Impact: A malicious application may be able to elevate privileges. CVE-2021-1782: an anonymous researcher Swift Available for: Apple TV 4K and Apple TV HD Impact: A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication Description: A logic issue was addressed with improved validation. CVE-2021-1769: CodeColorist of Ant-Financial Light-Year Labs Entry added February 1, 2021 WebKit Available for: Apple TV 4K and Apple TV HD Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management. CVE-2021-1788: Francisco Alonso (@revskills) Entry added February 1, 2021 WebKit Available for: Apple TV 4K and Apple TV HD Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved state handling. CVE-2021-1789: @S0rryMybad of 360 Vulcan Team Entry added February 1, 2021 WebKit Available for: Apple TV 4K and Apple TV HD Impact: Maliciously crafted web content may violate iframe sandboxing policy Description: This issue was addressed with improved iframe sandbox enforcement. CVE-2021-1801: Eliya Stein of Confiant Entry added February 1, 2021 WebRTC Available for: Apple TV 4K and Apple TV HD Impact: A malicious website may be able to access restricted ports on arbitrary servers Description: A port redirection issue was addressed with additional port validation. CVE-2021-1799: Gregory Vishnepolsky & Ben Seri of Armis Security, and Samy Kamkar Entry added February 1, 2021 Additional recognition iTunes Store We would like to acknowledge CodeColorist of Ant-Financial Light-Year Labs for their assistance. Entry added February 1, 2021 Kernel We would like to acknowledge Junzhi Lu (@pwn0rz), Mickey Jin & Jesse Change of Trend Micro for their assistance. Entry added February 1, 2021 libpthread We would like to acknowledge CodeColorist of Ant-Financial Light-Year Labs for their assistance. Entry added February 1, 2021 Store Demo We would like to acknowledge @08Tc3wBB for their assistance. Entry added February 1, 2021 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbURczHs1TP07VIfuZcsbuWJ6jjAFAmAYgtcACgkQZcsbuWJ6 jjC2WQ//bJVyj/RBYwoj3boUw/SH7hZ+n6Ho3KPRZQE2XWZ0KSODHSoXOgaf5xX7 xWAf5vbOGdEueWj476hmlZZPediB7SJK6xEkvg3SKzZrc5+MlgRUjnrNd/qygi75 tPXjpkyIAHBY5Ik+uoSyxkLkCn3i50KFwtJCmyibl3ayb1XA2/jUA4FtQkhz3HrM ZhMkBPOSObKkGiyj90eBNmeJRSwrxvBQPcp/EwqHbND+Y8UYAQ9ZDbHXWBVuDeRV R1No2qLit0TCs6MZnVP2CKNprXMy/bHLlNeVYGGIu1W+qQ3I30XvlY69VcH6JdVF xz6JIiXAJoOYDUFzesY2b8kMe7jiZnnDK+gWHeodV4oirsImITTlGY4gdiGb30Ag 2XDFpGedK0g+fD+SKI0lCOColTi6IEtTRm4/0ClI0HMc0akJn3qZXOz+iXzTZCa3 tssd6H2lZAW98GmsnMazUdEyGR+9I9RSvaJkLNOBxgDG+NURoTJ6vxHH2B3DYb/+ i+blVGMt7EBIZNwloOR8Fc+Ho5YTCFIwSxeqUzS9Vw53Bx7qA0AVd6CPPJSctWZ0 WKg1N3iW+dBWLWr43idEUNgUADL8Ya35Q6EwW+FxMHLwS11d7xA24AT14vJyi+4w ftTKFGZsNaUGMo2dCZNUnyC23xv3R8GYso0jc3DL4e1pAmeW2Rk=0JBx -----END PGP SIGNATURE----- . CVE-2021-1871: an anonymous researcher CVE-2021-1870: an anonymous researcher Additional details available soon. Installation note: This update is available through iTunes and Software Update on your iOS device, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Make sure you have an Internet connection and have installed the latest version of iTunes from https://www.apple.com/itunes/ iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device. The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device. To check that the iPhone, iPod touch, or iPad has been updated: * Navigate to Settings * Select General * Select About. The version after applying this update will be "iOS 14.4 and iPadOS 14.4"

Trust: 1.53

sources: NVD: CVE-2021-1782 // VULHUB: VHN-376442 // VULMON: CVE-2021-1782 // PACKETSTORM: 161147 // PACKETSTORM: 161248 // PACKETSTORM: 161148 // PACKETSTORM: 161247 // PACKETSTORM: 161146

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:gteversion:10.15

Trust: 1.0

vendor:applemodel:tvosscope:ltversion:14.4

Trust: 1.0

vendor:applemodel:ipadosscope:ltversion:14.4

Trust: 1.0

vendor:applemodel:mac os xscope:eqversion:10.14.6

Trust: 1.0

vendor:applemodel:iphone osscope:ltversion:14.4

Trust: 1.0

vendor:applemodel:mac os xscope:ltversion:10.15.7

Trust: 1.0

vendor:applemodel:mac os xscope:eqversion:10.15.7

Trust: 1.0

vendor:applemodel:macosscope:ltversion:11.2

Trust: 1.0

vendor:applemodel:watchosscope:ltversion:7.3

Trust: 1.0

vendor:applemodel:macosscope:gteversion:11.0

Trust: 1.0

vendor:applemodel:mac os xscope:ltversion:10.14.6

Trust: 1.0

vendor:applemodel:mac os xscope:gteversion:10.14

Trust: 1.0

sources: NVD: CVE-2021-1782

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2021-1782
value: HIGH

Trust: 1.0

CNNVD: CNNVD-202101-2422
value: HIGH

Trust: 0.6

VULHUB: VHN-376442
value: MEDIUM

Trust: 0.1

VULMON: CVE-2021-1782
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2021-1782
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.1

VULHUB: VHN-376442
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2021-1782
baseSeverity: HIGH
baseScore: 7.0
vectorString: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.0
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: VULHUB: VHN-376442 // VULMON: CVE-2021-1782 // CNNVD: CNNVD-202101-2422 // NVD: CVE-2021-1782

PROBLEMTYPE DATA

problemtype:CWE-667

Trust: 1.0

problemtype:CWE-269

Trust: 0.1

problemtype:CWE-362

Trust: 0.1

sources: VULHUB: VHN-376442 // NVD: CVE-2021-1782

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202101-2422

TYPE

competition condition problem

Trust: 0.6

sources: CNNVD: CNNVD-202101-2422

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-376442

PATCH

title:Apple iOS Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=140034

Trust: 0.6

title:TQ-pre-jailbreak Warranty Current state Credits License Miscurl:https://github.com/pattern-f/TQ-pre-jailbreak

Trust: 0.1

title:cicuta_virosa Current state The vuln Writeup How to build it Credits License PAC bypassurl:https://github.com/ModernPwner/cicuta_virosa

Trust: 0.1

title:TQ-pre-jailbreak Warranty Current state Credits License Miscurl:https://github.com/janderson61890/jailbreak

Trust: 0.1

title:LiRa Tình trạng Cảm ơn Giấy phépurl:https://github.com/H0aHuynh/LiRa14

Trust: 0.1

title:LiRa Tình trạng Cảm ơn Giấy phépurl:https://github.com/H0aHuynh/LiRa

Trust: 0.1

title:TQ-pre-jailbreak Warranty Current state Credits License Miscurl:https://github.com/anik2sd/oln

Trust: 0.1

title:iOS Hacking Resourcesurl:https://github.com/Siguza/ios-resources

Trust: 0.1

title:Exploits-Writeupsurl:https://github.com/joydo/CVE-Writeups

Trust: 0.1

title:https://github.com/houjingyi233/macOS-iOS-system-securityurl:https://github.com/houjingyi233/macOS-iOS-system-security

Trust: 0.1

title:https://github.com/houjingyi233/macos-ios-exploit-writeupurl:https://github.com/houjingyi233/macos-ios-exploit-writeup

Trust: 0.1

title:PoC in GitHuburl:https://github.com/soosmile/POC

Trust: 0.1

title:PoC in GitHuburl:https://github.com/manas3c/CVE-POC

Trust: 0.1

title:Known Exploited Vulnerabilities Detectorurl:https://github.com/Ostorlab/KEV

Trust: 0.1

title:PoC in GitHuburl:https://github.com/developer3000S/PoC-in-GitHub

Trust: 0.1

title:The Registerurl:https://www.theregister.co.uk/2021/01/26/apple_ios_zero_days/

Trust: 0.1

sources: VULMON: CVE-2021-1782 // CNNVD: CNNVD-202101-2422

EXTERNAL IDS

db:NVDid:CVE-2021-1782

Trust: 2.3

db:PACKETSTORMid:161146

Trust: 0.8

db:PACKETSTORMid:161247

Trust: 0.8

db:AUSCERTid:ESB-2021.0354

Trust: 0.6

db:AUSCERTid:ESB-2021.0298

Trust: 0.6

db:CNNVDid:CNNVD-202101-2422

Trust: 0.6

db:PACKETSTORMid:161147

Trust: 0.2

db:PACKETSTORMid:161248

Trust: 0.2

db:PACKETSTORMid:161148

Trust: 0.2

db:VULHUBid:VHN-376442

Trust: 0.1

db:VULMONid:CVE-2021-1782

Trust: 0.1

sources: VULHUB: VHN-376442 // VULMON: CVE-2021-1782 // PACKETSTORM: 161147 // PACKETSTORM: 161248 // PACKETSTORM: 161148 // PACKETSTORM: 161247 // PACKETSTORM: 161146 // CNNVD: CNNVD-202101-2422 // NVD: CVE-2021-1782

REFERENCES

url:https://support.apple.com/en-us/ht212146

Trust: 1.8

url:https://support.apple.com/en-us/ht212147

Trust: 1.8

url:https://support.apple.com/en-us/ht212148

Trust: 1.8

url:https://support.apple.com/en-us/ht212149

Trust: 1.8

url:https://nvd.nist.gov/vuln/detail/cve-2021-1782

Trust: 1.1

url:https://vigilance.fr/vulnerability/apple-ios-three-vulnerabilities-34417

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.0298/

Trust: 0.6

url:https://packetstormsecurity.com/files/161247/apple-security-advisory-2021-02-01-3.html

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.0354/

Trust: 0.6

url:https://packetstormsecurity.com/files/161146/apple-security-advisory-2021-01-26-1.html

Trust: 0.6

url:https://www.apple.com/support/security/pgp/

Trust: 0.5

url:https://support.apple.com/ht212149.

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1789

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1760

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1766

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1783

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1787

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1757

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1785

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1769

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1761

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1744

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1748

Trust: 0.2

url:https://support.apple.com/ht212148.

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1764

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1773

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1776

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1791

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1778

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1786

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1772

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1743

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1758

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1792

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1788

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1750

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1746

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1747

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2021-1741

Trust: 0.2

url:https://cwe.mitre.org/data/definitions/667.html

Trust: 0.1

url:https://github.com/pattern-f/tq-pre-jailbreak

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-1793

Trust: 0.1

url:https://support.apple.com/kb/ht204641

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-1759

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-1870

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2021-1871

Trust: 0.1

url:https://www.apple.com/itunes/

Trust: 0.1

url:https://support.apple.com/ht212146.

Trust: 0.1

sources: VULHUB: VHN-376442 // VULMON: CVE-2021-1782 // PACKETSTORM: 161147 // PACKETSTORM: 161248 // PACKETSTORM: 161148 // PACKETSTORM: 161247 // PACKETSTORM: 161146 // CNNVD: CNNVD-202101-2422 // NVD: CVE-2021-1782

CREDITS

Apple

Trust: 1.1

sources: PACKETSTORM: 161147 // PACKETSTORM: 161248 // PACKETSTORM: 161148 // PACKETSTORM: 161247 // PACKETSTORM: 161146 // CNNVD: CNNVD-202101-2422

SOURCES

db:VULHUBid:VHN-376442
db:VULMONid:CVE-2021-1782
db:PACKETSTORMid:161147
db:PACKETSTORMid:161248
db:PACKETSTORMid:161148
db:PACKETSTORMid:161247
db:PACKETSTORMid:161146
db:CNNVDid:CNNVD-202101-2422
db:NVDid:CVE-2021-1782

LAST UPDATE DATE

2024-11-23T20:36:22.092000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-376442date:2021-04-09T00:00:00
db:VULMONid:CVE-2021-1782date:2024-02-09T00:00:00
db:CNNVDid:CNNVD-202101-2422date:2021-04-13T00:00:00
db:NVDid:CVE-2021-1782date:2024-11-21T05:45:06.107

SOURCES RELEASE DATE

db:VULHUBid:VHN-376442date:2021-04-02T00:00:00
db:VULMONid:CVE-2021-1782date:2021-04-02T00:00:00
db:PACKETSTORMid:161147date:2021-01-27T14:08:57
db:PACKETSTORMid:161248date:2021-02-02T16:09:50
db:PACKETSTORMid:161148date:2021-01-27T14:09:51
db:PACKETSTORMid:161247date:2021-02-02T16:08:52
db:PACKETSTORMid:161146date:2021-01-27T14:07:26
db:CNNVDid:CNNVD-202101-2422date:2021-01-27T00:00:00
db:NVDid:CVE-2021-1782date:2021-04-02T18:15:21.373