CVE-2021-1871

Summary

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 14.4affected
ApplemacOSunspecified < 11.2affected

Weaknesses

  • A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: yes
    • Technical Impact: total

Additional References

References