CVE-2021-1877: Input Validation

Q: What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2021-1877.

Q: What is the title of this vulnerability?

The title of this vulnerability is 'Kernel. An out-of-bounds read was addressed with improved input validation.'

Q: What is the severity of this vulnerability?

The severity of this vulnerability is not stated in the provided information.

Q: Which software is affected by this vulnerability?

The Apple iOS versions up to exclusive 14.5 and Apple iPadOS versions up to exclusive 14.5 are affected by this vulnerability.

Q: How can I fix this vulnerability?

To fix this vulnerability, update your Apple iOS or Apple iPadOS to version 14.5 or higher.

Published Apr 26, 2021

Updated

Kernel. An out-of-bounds read was addressed with improved input validation.

Other sources

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.5 and iPadOS 14.5. A local user may be able to read kernel memory.

Credit

Zuozhi Fan@@pattern_F_(Ant Group Tianqiong Security Lab), Tielei Wang(Pangu Lab)

Affected Software

4 affected componentsFixes available

Apple iOS and iPadOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

14.5

Apple iOS, iPadOS, and macOS<14.5

iPhone OS<14.5

Event History

Sep 8, 2021

CVE Published

via MITRE·02:48 PM

Data Sourced

via MITRE·02:48 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT212317

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2021-1877.

What is the title of this vulnerability?