A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, iOS 12.5.4, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted certificate may lead to arbitrary code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2021-09-08T13:43:42
Updated: 2024-08-03T22:40:32.125Z
Reserved: 2021-04-13T00:00:00
Link: CVE-2021-30737
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-09-08T14:15:09.337
Modified: 2023-01-09T16:41:59.350
Link: CVE-2021-30737
Redhat
No data.