CVE-2021-1862: Low severity apple ios and ipados vulnerability

Q: What is the vulnerability ID for this Siri vulnerability?

The vulnerability ID for this Siri vulnerability is CVE-2021-1862.

Q: What is the description of CVE-2021-1862?

CVE-2021-1862 is a vulnerability in Siri where a person with physical access may be able to access contacts.

Q: Which software is affected by CVE-2021-1862?

The software affected by CVE-2021-1862 is Apple iOS versions up to and excluding 14.5, and Apple iPadOS versions up to and excluding 14.5.

Q: How can a person exploit this vulnerability?

To exploit CVE-2021-1862, a person needs physical access to the device and may be able to access contacts through Siri.

Q: Is there a fix available for CVE-2021-1862?

Yes, Apple has released a fix for CVE-2021-1862. Users should update their devices to Apple iOS 14.5 or Apple iPadOS 14.5 to address the vulnerability.

Published Apr 26, 2021

Updated

Siri. Description: A person with physical access may be able to access contacts.

Other sources

Description: A person with physical access may be able to access contacts. This issue is fixed in iOS 14.5 and iPadOS 14.5. Impact: An issue with Siri search access to information was addressed with improved logic.

Credit

Anshraj Srivastava@@AnshrajSrivas14(UKEF)

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

iPhone OS<14.5

Event History

Sep 8, 2021

CVE Published

via MITRE·02:46 PM

Data Sourced

via MITRE·02:46 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT212317

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the vulnerability ID for this Siri vulnerability?

The vulnerability ID for this Siri vulnerability is CVE-2021-1862.

What is the description of CVE-2021-1862?