|
201011
|
5.0 |
MEDIUM
Local
|
apple
|
iphone_os
ipados
|
An issue obscuring passwords in screenshots was addressed with improved logic. This issue is fixed in iOS 14.5 and iPadOS 14.5. A user's password may be visible on screen.
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-1865
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201012
|
9.8 |
CRITICAL
Network
|
apple
|
iphone_os
tvos
watchos
ipados
|
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An attacker with JavaScript execution may be able to exe…
|
CWE-416
Use After Free
|
CVE-2021-1864
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201013
|
2.4 |
LOW
Physics
|
apple
|
iphone_os
ipados
|
An issue existed with authenticating the action triggered by an NFC tag. The issue was addressed with improved action authentication. This issue is fixed in iOS 14.5 and iPadOS 14.5. A person with ph…
|
CWE-287
Improper Authentication
|
CVE-2021-1863
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201014
|
2.4 |
LOW
Physics
|
apple
|
iphone_os
ipados
|
Description: A person with physical access may be able to access contacts. This issue is fixed in iOS 14.5 and iPadOS 14.5. Impact: An issue with Siri search access to information was addressed with …
|
NVD-CWE-noinfo
|
CVE-2021-1862
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201015
|
4.3 |
MEDIUM
Network
|
apple
|
macos
|
An issue existed in determining cache occupancy. The issue was addressed through improved logic. This issue is fixed in macOS Big Sur 11.3. A malicious website may be able to track users by setting s…
|
NVD-CWE-noinfo
|
CVE-2021-1861
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201016
|
6.5 |
MEDIUM
Network
|
apple
|
mac_os_x
macos
iphone_os
tvos
watchos
ipados
|
A memory initialization issue was addressed with improved memory handling. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS…
|
CWE-665
Improper Initialization
|
CVE-2021-1860
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201017
|
7.5 |
HIGH
Network
|
apple
|
macos
|
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3. Locked Notes content may have been unexpectedly unlocked.
|
NVD-CWE-noinfo
|
CVE-2021-1859
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201018
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
macos
iphone_os
tvos
watchos
ipados
|
Processing a maliciously crafted image may lead to arbitrary code execution. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur …
|
CWE-787
Out-of-bounds Write
|
CVE-2021-1858
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201019
|
6.5 |
MEDIUM
Network
|
apple
|
mac_os_x
macos
icloud
itunes
iphone_os
tvos
watchos
ipados
|
A memory initialization issue was addressed with improved memory handling. This issue is fixed in iTunes 12.11.3 for Windows, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iClou…
|
CWE-665
Improper Initialization
|
CVE-2021-1857
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201020
|
6.5 |
MEDIUM
Network
|
apple
|
macos
|
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3. A malicious website may be able to force unnecessary network connections to fetch its favicon.
|
NVD-CWE-noinfo
|
CVE-2021-1855
|
2024-11-21 14:45 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
