CVE-2021-1831: Medium severity apple ios and ipados vulnerability

Q: What is CVE-2021-1831?

CVE-2021-1831 is a vulnerability in Shortcuts on Apple iOS and iPadOS that was addressed with improved permissions logic.

Q: What software versions are affected by CVE-2021-1831?

CVE-2021-1831 affects Apple iOS and iPadOS versions up to but excluding 14.5.

Q: What is the vendor and product associated with CVE-2021-1831?

The vendor is Apple and the product is Shortcuts on Apple iOS and iPadOS.

Q: How can I fix CVE-2021-1831?

To fix CVE-2021-1831, update your Apple iOS or iPadOS to version 14.5 or later.

Q: Where can I find more information about CVE-2021-1831?

You can find more information about CVE-2021-1831 on the Apple support website: https://support.apple.com/en-us/HT212317

Published Apr 26, 2021

Updated

Shortcuts. The issue was addressed with improved permissions logic.

Other sources

The issue was addressed with improved permissions logic. This issue is fixed in iOS 14.5 and iPadOS 14.5. An application may allow shortcuts to access restricted files.

Credit

Bouke van der Bijl

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

iPhone OS<14.5

Event History

Sep 8, 2021

CVE Published

via MITRE·02:43 PM

Data Sourced

via MITRE·02:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT212317

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2021-1831?

CVE-2021-1831 is a vulnerability in Shortcuts on Apple iOS and iPadOS that was addressed with improved permissions logic.

What software versions are affected by CVE-2021-1831?