CVE-2021-1796: Input Validation
Published Jan 26, 2021
·Updated
Bluetooth. An out-of-bounds write was addressed with improved input validation.
Credit
Jianjun Dai(360 Alpha Lab)
Affected Software
4 affected componentsFixes available
iPadOS<14.4
iPhone OS<14.4
Apple iOS and iPadOS<14.4
14.4
Apple iOS, iPadOS, and macOS<14.4
14.4
Event History
Apr 2, 2021
CVE Published
via MITRE·06:03 PM
Data Sourced
via MITRE·06:03 PM
DescriptionWeakness
Frequently Asked Questions
1
What is CVE-2021-1796?
CVE-2021-1796 is a vulnerability in Bluetooth that allows for an out-of-bounds write, which has been addressed through improved input validation.
2
What software is affected by CVE-2021-1796?
The Apple iOS and iPadOS versions up to and excluding 14.4 are affected by CVE-2021-1796.
3
How severe is CVE-2021-1796?
The severity of CVE-2021-1796 is not specified.
4
How can I fix CVE-2021-1796?
To fix CVE-2021-1796, update your Apple iOS or iPadOS to version 14.4 or later.
5
Where can I find more information about CVE-2021-1796?
You can find more information about CVE-2021-1796 on the Apple support website at the following link: [https://support.apple.com/en-us/HT212146](https://support.apple.com/en-us/HT212146)