CVE-2021-30881

Summary

An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Unpacking a maliciously crafted archive may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 15.1affected
ApplemacOSunspecified < 12.0affected
ApplemacOSunspecified < 2021affected
ApplemacOSunspecified < 11.6affected
ApplemacOSunspecified < 8.1affected
ApplemacOSunspecified < 15.1affected

Weaknesses

  • Unpacking a maliciously crafted archive may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References