CVE-2021-30958

Summary

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Playing a malicious audio file may lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
ApplewatchOSunspecified < 8.3affected
AppleiOS and iPadOSunspecified < 15.2affected
ApplemacOSunspecified < 12.1affected
ApplemacOSunspecified < 11.6affected
ApplemacOSunspecified < 15.2affected
ApplemacOSunspecified < 2021affected

Weaknesses

  • Playing a malicious audio file may lead to arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References