CVE-2021-1874: Critical severity apple ios and ipados vulnerability

Q: What is CVE-2021-1874?

CVE-2021-1874 is a vulnerability in the Kernel that has been addressed with improved state management.

Q: What software is affected by CVE-2021-1874?

The affected software includes Apple iOS up to version 14.5 and Apple iPadOS up to version 14.5.

Q: What is the severity of CVE-2021-1874?

The severity of CVE-2021-1874 is not provided in the information provided.

Q: How do I fix CVE-2021-1874?

To fix CVE-2021-1874, update your Apple iOS or Apple iPadOS to version 14.5 or newer.

Q: Where can I find more information about CVE-2021-1874?

You can find more information about CVE-2021-1874 on the Apple support website at https://support.apple.com/en-us/HT212317.

Published Apr 26, 2021

Updated

Kernel. A logic issue was addressed with improved state management.

Other sources

A logic issue was addressed with improved state management. This issue is fixed in iOS 14.5 and iPadOS 14.5. An application may be able to execute arbitrary code with kernel privileges.

Credit

Zuozhi Fan@@pattern_F_(Ant Group Tianqiong Security Lab), @@0xalsr

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

iPhone OS<14.5

Event History

Sep 8, 2021

CVE Published

via MITRE·02:46 PM

Data Sourced

via MITRE·02:46 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT212317

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2021-1874?

CVE-2021-1874 is a vulnerability in the Kernel that has been addressed with improved state management.

What software is affected by CVE-2021-1874?