* * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:apple:ipad_os:*:*:*:*:*:*:*:*

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : CVE Number Descending CVE Number Ascending CVSS Score Descending Number Of Exploits Descending

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2021-30924		DoS	2021-08-24	2022-02-11	7.8	None	Remote	Low	Not required	None	None	Complete
A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.0.1. A remote attacker can cause a device to unexpectedly restart.
2	CVE-2021-30923	362	Exec Code	2021-08-24	2022-02-11	7.6	None	Remote	High	Not required	Complete	Complete	Complete
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.0.1. A malicious application may be able to execute arbitrary code with kernel privileges.
3	CVE-2021-30919	787	Exec Code	2021-08-24	2022-03-04	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Processing a maliciously crafted PDF may lead to arbitrary code execution.
4	CVE-2021-30918	668		2021-08-24	2022-04-22	2.1	None	Local	Low	Not required	Partial	None	None
A Lock Screen issue was addressed with improved state management. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.0.1 and iPadOS 15.0.1. A user may be able to view restricted content from the Lock Screen.
5	CVE-2021-30917	20	Exec Code Mem. Corr.	2021-08-24	2021-11-29	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
A memory corruption issue existed in the processing of ICC profiles. This issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Processing a maliciously crafted image may lead to arbitrary code execution.
6	CVE-2021-30916	787	Exec Code Mem. Corr.	2021-08-24	2022-04-01	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A malicious application may be able to execute arbitrary code with kernel privileges.
7	CVE-2021-30915			2021-08-24	2021-11-02	2.1	None	Local	Low	Not required	Partial	None	None
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A person with physical access to an iOS device may be able to determine characteristics of a user's password in a secure text entry field.
8	CVE-2021-30914	787	Exec Code Mem. Corr.	2021-08-24	2021-11-01	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1. An application may be able to execute arbitrary code with kernel privileges.
9	CVE-2021-30911	125		2021-08-24	2021-11-02	4.3	None	Remote	Medium	Not required	Partial	None	None
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, iOS 15.1 and iPadOS 15.1, macOS Big Sur 11.6.1. Processing a maliciously crafted USD file may disclose memory contents.
10	CVE-2021-30910	125		2021-08-24	2021-12-06	4.3	None	Remote	Medium	Not required	Partial	None	None
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Processing a maliciously crafted file may disclose user information.
11	CVE-2021-30909	787	Exec Code Mem. Corr.	2021-08-24	2021-11-02	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. An application may be able to execute arbitrary code with kernel privileges.
12	CVE-2021-30907	190	Overflow	2021-08-24	2021-11-02	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
An integer overflow was addressed through improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A malicious application may be able to elevate privileges.
13	CVE-2021-30906			2021-08-24	2022-05-03	4.6	None	Local	Low	Not required	Partial	Partial	Partial
This issue was addressed with improved checks. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, macOS Big Sur 11.6.1. A local attacker may be able to elevate their privileges.
14	CVE-2021-30905	125		2021-08-24	2022-02-11	4.3	None	Remote	Medium	Not required	Partial	None	None
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina. Processing a maliciously crafted file may disclose user information.
15	CVE-2021-30903		Exec Code	2021-08-24	2022-02-11	4.6	None	Local	Low	Not required	Partial	Partial	Partial
This issue was addressed with improved checks. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1. A local attacker may be able to cause unexpected application termination or arbitrary code execution.
16	CVE-2021-30902	416	Exec Code	2021-08-24	2021-11-02	4.6	None	Local	Low	Not required	Partial	Partial	Partial
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1. A local attacker may be able to cause unexpected application termination or arbitrary code execution.
17	CVE-2021-30900	787	Exec Code	2021-08-24	2022-02-11	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1. A malicious application may be able to execute arbitrary code with kernel privileges.
18	CVE-2021-30897			2021-08-24	2022-02-11	4.3	None	Remote	Medium	Not required	Partial	None	None
An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin.
19	CVE-2021-30896			2021-08-24	2021-11-02	4.3	None	Remote	Medium	Not required	Partial	None	None
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, tvOS 15.1, watchOS 8.1, macOS Monterey 12.0.1. A malicious application may be able to read user's gameplay data.
20	CVE-2021-30895			2021-08-24	2021-11-02	4.3	None	Remote	Medium	Not required	Partial	None	None
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, tvOS 15.1, watchOS 8.1, macOS Monterey 12.0.1. A malicious application may be able to access information about a user's contacts.
21	CVE-2021-30894	787	Exec Code Mem. Corr.	2021-08-24	2021-11-02	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, tvOS 15.1. An application may be able to execute arbitrary code with kernel privileges.
22	CVE-2021-30890	79	XSS	2021-08-24	2022-02-09	4.3	None	Remote	Medium	Not required	None	Partial	None
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to universal cross site scripting.
23	CVE-2021-30889	120	Exec Code Overflow	2021-08-24	2021-12-21	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to arbitrary code execution.
24	CVE-2021-30888	601	+Info	2021-08-24	2021-12-21	4.3	None	Remote	Medium	Not required	Partial	None	None
An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1. A malicious website using Content Security Policy reports may be able to leak information via redirect behavior .
25	CVE-2021-30887			2021-08-24	2022-02-09	4.3	None	Remote	Medium	Not required	None	Partial	None
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to unexpectedly unenforced Content Security Policy.
26	CVE-2021-30886	416	Exec Code	2021-08-24	2021-11-01	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. An application may be able to execute arbitrary code with kernel privileges.
27	CVE-2021-30884			2021-08-24	2021-12-22	4.3	None	Remote	Medium	Not required	Partial	None	None
The issue was resolved with additional restrictions on CSS compositing. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Visiting a maliciously crafted website may reveal a user's browsing history.
28	CVE-2021-30883	787	Exec Code Mem. Corr.	2021-08-24	2021-11-01	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1, macOS Big Sur 11.6.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..
29	CVE-2021-30882			2021-08-24	2021-11-01	5.0	None	Remote	Low	Not required	None	Partial	None
A logic issue was addressed with improved validation. This issue is fixed in watchOS 8, iOS 15 and iPadOS 15. An application with microphone permission may unexpectedly access microphone input during a FaceTime call.
30	CVE-2021-30881	20	Exec Code	2021-08-24	2021-11-01	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Unpacking a maliciously crafted archive may lead to arbitrary code execution.
31	CVE-2021-30875	200	+Info	2021-08-24	2021-11-01	2.1	None	Local	Low	Not required	Partial	None	None
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 15.1 and iPadOS 15.1. A local attacker may be able to view contacts from the lock screen.
32	CVE-2021-30874	862		2021-08-24	2021-11-23	5.0	None	Remote	Low	Not required	None	Partial	None
An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A VPN configuration may be installed by an app without user permission.
33	CVE-2021-30870			2021-08-24	2021-11-01	4.3	None	Remote	Medium	Not required	None	Partial	None
A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. Previewing an html file attached to a note may unexpectedly contact remote servers.
34	CVE-2021-30867	287		2021-08-24	2021-11-23	4.3	None	Remote	Medium	Not required	Partial	None	None
The issue was addressed with improved authentication. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to access photo metadata without needing permission to access photos.
35	CVE-2021-30866			2021-08-24	2021-11-23	3.3	None	Local Network	Low	Not required	Partial	None	None
A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A device may be passively tracked by its WiFi MAC address.
36	CVE-2021-30863			2021-08-24	2021-11-01	4.6	None	Local	Low	Not required	Partial	Partial	Partial
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID.
37	CVE-2021-30859	843	Exec Code	2021-08-24	2021-11-01	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina. A malicious application may be able to execute arbitrary code with kernel privileges.
38	CVE-2021-30857	362	Exec Code	2021-08-24	2021-11-01	7.6	None	Remote	High	Not required	Complete	Complete	Complete
A race condition was addressed with improved locking. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges.
39	CVE-2021-30855	59		2021-08-24	2022-02-11	4.3	None	Remote	Medium	Not required	Partial	None	None
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. An application may be able to access restricted files.
40	CVE-2021-30854			2021-08-24	2021-11-01	5.0	None	Remote	Low	Not required	None	Partial	None
A logic issue was addressed with improved state management. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A sandboxed process may be able to circumvent sandbox restrictions.
41	CVE-2021-30852	843	Exec Code	2021-08-24	2021-11-23	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution.
42	CVE-2021-30851	787	Exec Code Mem. Corr.	2021-08-24	2021-11-23	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.
43	CVE-2021-30834		Exec Code	2021-10-28	2022-02-11	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, watchOS 8, Security Update 2021-007 Catalina. Processing a malicious audio file may result in unexpected application termination or arbitrary code execution.
44	CVE-2021-30823		Bypass	2021-10-28	2021-12-21	4.0	None	Remote	Low	???	None	Partial	None
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.
45	CVE-2021-30807		Exec Code Mem. Corr.	2021-10-19	2021-10-20	9.3	None	Remote	Medium	Not required	Complete	Complete	Complete
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.5.1, iOS 14.7.1 and iPadOS 14.7.1, watchOS 7.6.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.
46	CVE-2021-30760	190	Exec Code Overflow	2021-09-08	2021-09-16	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
An integer overflow was addressed through improved input validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-005 Mojave, Security Update 2021-004 Catalina. Processing a maliciously crafted font file may lead to arbitrary code execution.
47	CVE-2021-30753	125		2021-09-08	2021-09-15	4.3	None	Remote	Medium	Not required	Partial	None	None
Processing a maliciously crafted font may result in the disclosure of process memory. This issue is fixed in macOS Big Sur 11.4, tvOS 14.6, watchOS 7.5, iOS 14.6 and iPadOS 14.6. An out-of-bounds read was addressed with improved input validation.
48	CVE-2021-30752	125	Exec Code	2021-09-08	2021-09-22	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
Processing a maliciously crafted image may lead to arbitrary code execution. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An out-of-bounds read was addressed with improved input validation.
49	CVE-2021-30749	787	Exec Code Mem. Corr.	2021-09-08	2021-09-22	6.8	None	Remote	Medium	Not required	Partial	Partial	Partial
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to arbitrary code execution.
50	CVE-2021-30746	125		2021-09-08	2021-09-22	4.3	None	Remote	Medium	Not required	Partial	None	None
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted USD file may disclose memory contents.

Total number of vulnerabilities : 241 Page : 1 (This Page)2 3 4 5