CVE-2021-1851

Summary

A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An application may be able to execute arbitrary code with kernel privileges.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 14.5affected
AppletvOSunspecified < 14.5affected
ApplewatchOSunspecified < 7.4affected
ApplemacOSunspecified < 11.3affected
ApplemacOSunspecified < 2021affected
ApplemacOSunspecified < 2021affected

Weaknesses

  • An application may be able to execute arbitrary code with kernel privileges

ADP Enrichment

CVE Program Container

Additional References

References