CVE-2021-30998

Summary

A S/MIME issue existed in the handling of encrypted email. This issue was addressed with improved selection of the encryption certificate. This issue is fixed in iOS 15.2 and iPadOS 15.2. A sender's email address may be leaked when sending an S/MIME encrypted email using a certificate with more than one email address.

Affected Software

VendorProductVersion RangeStatus
AppleiOS and iPadOSunspecified < 15.2affected

Weaknesses

  • A sender's email address may be leaked when sending an S/MIME encrypted email using a certificate with more than one email address

ADP Enrichment

CVE Program Container

Additional References

References