CVE-2021-1840: High severity apple macos vulnerability
Published Apr 26, 2021
·Updated
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A local attacker may be able to elevate their privileges.
Other sources
Kernel. A memory corruption issue was addressed with improved validation.
Credit
Zuozhi Fan@@pattern_F_(Ant Group Tianqiong Security Lab), Zuozhi Fan@@pattern_F_(Ant Group Tianqiong Security Lab), Zuozhi Fan@@pattern_F_(Ant Group Tianqiong Security Lab)
Affected Software
45 affected componentsFixes available
Apple macOS Big Sur<11.3
11.3
Apple Catalina
Apple Mojave
Apple iOS and macOS=10.14
Apple iOS and macOS=10.14.0
Apple iOS and macOS=10.14.1
Apple iOS and macOS=10.14.2
Apple iOS and macOS=10.14.3
Apple iOS and macOS=10.14.4
Apple iOS and macOS=10.14.4-beta4
Apple iOS and macOS=10.14.5
Apple iOS and macOS=10.14.6
Apple iOS and macOS=10.14.6
Apple iOS and macOS=10.14.6-security_update_2019-001
Apple iOS and macOS=10.14.6-security_update_2019-002
Apple iOS and macOS=10.14.6-security_update_2019-004
Apple iOS and macOS=10.14.6-security_update_2019-005
Apple iOS and macOS=10.14.6-security_update_2019-006
Apple iOS and macOS=10.14.6-security_update_2019-007
Apple iOS and macOS=10.14.6-security_update_2020-001
Apple iOS and macOS=10.14.6-security_update_2020-002
Apple iOS and macOS=10.14.6-security_update_2020-003
Apple iOS and macOS=10.14.6-security_update_2020-004
Apple iOS and macOS=10.14.6-security_update_2020-005
Apple iOS and macOS=10.14.6-security_update_2020-006
Apple iOS and macOS=10.14.6-security_update_2020-007
Apple iOS and macOS=10.14.6-security_update_2021-001
Apple iOS and macOS=10.14.6-security_update_2021-002
Apple iOS and macOS=10.15
Apple iOS and macOS=10.15.1
Apple iOS and macOS=10.15.2
Apple iOS and macOS=10.15.3
Apple iOS and macOS=10.15.4
Apple iOS and macOS=10.15.5
Apple iOS and macOS=10.15.6
Apple iOS and macOS=10.15.6
Apple iOS and macOS=10.15.6-supplemental_update
Apple iOS and macOS=10.15.7
Apple iOS and macOS=10.15.7
Apple iOS and macOS=10.15.7-security_update_2020
Apple iOS and macOS=10.15.7-security_update_2020-001
Apple iOS and macOS=10.15.7-security_update_2020-005
Apple iOS and macOS=10.15.7-security_update_2020-007
Apple iOS and macOS=10.15.7-security_update_2021-001
Apple macOS>=11.0<11.3
Event History
Sep 8, 2021
CVE Published
via MITRE·02:43 PM
Data Sourced
via MITRE·02:43 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2021-1853
- CVE-2021-1849
- CVE-2021-1867
- CVE-2021-1810
- CVE-2021-1808
- CVE-2021-1857
- CVE-2021-30752
- CVE-2021-30664
- CVE-2021-1846
- CVE-2021-1809
- CVE-2021-30659
- CVE-2021-1847
- CVE-2021-1811
- CVE-2020-8284
- CVE-2020-8286
- CVE-2020-8285
- CVE-2021-1784
- CVE-2021-1872
- CVE-2021-1881
- CVE-2021-1882
- CVE-2021-1813
- CVE-2021-1883
- CVE-2021-1884
- CVE-2021-1880
- CVE-2021-30653
- CVE-2021-1814
- CVE-2021-1843
- CVE-2021-1885
- CVE-2021-1858
- CVE-2021-30743
- CVE-2021-30658
- CVE-2021-1841
- CVE-2021-1834
- CVE-2021-1860
- CVE-2021-1840
- CVE-2021-1851
- CVE-2021-1832
- CVE-2021-30660
- CVE-2021-30652
- CVE-2021-1875
- CVE-2021-1824
- CVE-2021-1859
- CVE-2021-1876
- CVE-2021-1815
- CVE-2021-1739
- CVE-2021-1740
- CVE-2021-1861
- CVE-2021-1855
- CVE-2021-1868
- CVE-2021-30750
- CVE-2021-1878
- CVE-2021-30657
- CVE-2021-30856
- CVE-2020-8037
- CVE-2021-1839
- CVE-2021-1825
- CVE-2021-1817
- CVE-2021-1826
- CVE-2021-1820
- CVE-2021-30661
- CVE-2020-7463
- CVE-2021-1828
- CVE-2021-1829
- CVE-2021-30655
- CVE-2021-1770
- CVE-2021-1873
- CVE-2021-1797
- CVE-2020-27942
- CVE-2020-3838
- CVE-2021-1805
- CVE-2021-1806
Frequently Asked Questions
1
What is CVE-2021-1840?
CVE-2021-1840 is a vulnerability in the kernel that allows memory corruption.
2
How can the CVE-2021-1840 vulnerability be exploited?
The CVE-2021-1840 vulnerability can be exploited by an attacker to corrupt memory in the kernel.
3
What products are affected by CVE-2021-1840?
CVE-2021-1840 affects Apple's Catalina, Mojave, and macOS Big Sur up to version 11.3.
4
What is the severity of CVE-2021-1840?
The severity of CVE-2021-1840 is not specified.
5
How can I fix the CVE-2021-1840 vulnerability?
To fix the CVE-2021-1840 vulnerability, users should update their Apple operating systems to the latest version available.