CVE-2021-1880: High severity apple macos vulnerability
Published Apr 26, 2021
·Updated
ImageIO. This issue was addressed with improved checks.
Other sources
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.3, watchOS 7.4. Processing a maliciously crafted image may lead to arbitrary code execution.
Credit
Xingwei Lin(Ant Security Light), Ye Zhang(Baidu Security), Mickey Jin & Qi Sun(Trend Micro), (Ant Security Light)
Affected Software
4 affected componentsFixes available
Apple macOS Big Sur<11.3
11.3
Apple WatchOS<7.4
7.4
Apple macOS>=11.0<11.3
Apple WatchOS<7.4
Event History
Sep 8, 2021
CVE Published
via MITRE·02:46 PM
Data Sourced
via MITRE·02:46 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2021-1853
- CVE-2021-1849
- CVE-2021-1867
- CVE-2021-1810
- CVE-2021-1808
- CVE-2021-1857
- CVE-2021-30752
- CVE-2021-30664
- CVE-2021-1846
- CVE-2021-1809
- CVE-2021-30659
- CVE-2021-1847
- CVE-2021-1811
- CVE-2020-8284
- CVE-2020-8286
- CVE-2020-8285
- CVE-2021-1784
- CVE-2021-1872
- CVE-2021-1881
- CVE-2021-1882
- CVE-2021-1813
- CVE-2021-1883
- CVE-2021-1884
- CVE-2021-1880
- CVE-2021-30653
- CVE-2021-1814
- CVE-2021-1843
- CVE-2021-1885
- CVE-2021-1858
- CVE-2021-30743
- CVE-2021-30658
- CVE-2021-1841
- CVE-2021-1834
- CVE-2021-1860
- CVE-2021-1840
- CVE-2021-1851
- CVE-2021-1832
- CVE-2021-30660
- CVE-2021-30652
- CVE-2021-1875
- CVE-2021-1824
- CVE-2021-1859
- CVE-2021-1876
- CVE-2021-1815
- CVE-2021-1739
- CVE-2021-1740
- CVE-2021-1861
- CVE-2021-1855
- CVE-2021-1868
- CVE-2021-30750
- CVE-2021-1878
- CVE-2021-30657
- CVE-2021-30856
- CVE-2020-8037
- CVE-2021-1839
- CVE-2021-1825
- CVE-2021-1817
- CVE-2021-1826
- CVE-2021-1820
- CVE-2021-30661
- CVE-2020-7463
- CVE-2021-1828
- CVE-2021-1829
- CVE-2021-30655
- CVE-2021-1770
- CVE-2021-1873
- CVE-2021-30764
- CVE-2021-1864
- CVE-2021-1816
- CVE-2021-1822
- CVE-2021-1807
Frequently Asked Questions
1
What is CVE-2021-1880?
CVE-2021-1880 is a vulnerability in ImageIO that has been addressed with improved checks.
2
Which software versions are affected by CVE-2021-1880?
CVE-2021-1880 affects watchOS up to version 7.4 and macOS Big Sur up to version 11.3.
3
How can I fix CVE-2021-1880?
To fix CVE-2021-1880, update your watchOS to version 7.4 or newer, and update your macOS Big Sur to version 11.3 or newer.
4
Where can I find more information about CVE-2021-1880?
You can find more information about CVE-2021-1880 on the Apple support website.