CVE-2021-1830: Input Validation

Q: What is CVE-2021-1830?

CVE-2021-1830 is a vulnerability in the Kernel that allows for an out-of-bounds read which has been addressed with improved input validation.

Q: Who is affected by CVE-2021-1830?

Users of Apple iOS and iPadOS versions up to exclusive version 14.5 are affected by CVE-2021-1830.

Q: How can I fix CVE-2021-1830?

To fix CVE-2021-1830, update your Apple iOS or iPadOS version to at least 14.5 or a higher version.

Q: What is the severity of CVE-2021-1830?

The severity of CVE-2021-1830 is not specified in the provided information.

Q: Where can I find more information about CVE-2021-1830?

You can find more information about CVE-2021-1830 on the Apple support website: https://support.apple.com/en-us/HT212317

Published Apr 26, 2021

Updated

Kernel. An out-of-bounds read was addressed with improved input validation.

Other sources

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.5 and iPadOS 14.5. A local user may be able to read kernel memory.

Credit

Zuozhi Fan@@pattern_F_(Ant Group Tianqiong Security Lab), Tielei Wang(Pangu Lab)

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

iPhone OS<14.5

Event History

Sep 8, 2021

CVE Published

via MITRE·02:43 PM

Data Sourced

via MITRE·02:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT212317

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2021-1830?

CVE-2021-1830 is a vulnerability in the Kernel that allows for an out-of-bounds read which has been addressed with improved input validation.

Who is affected by CVE-2021-1830?