A deserialization issue was addressed through improved validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 12.5.5, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. A sandboxed process may be able to circumvent sandbox restrictions. Apple was aware of a report that this issue may have been actively exploited at the time of release..
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2021-08-24T18:51:48
Updated: 2024-08-03T22:48:14.391Z
Reserved: 2021-04-13T00:00:00
Link: CVE-2021-31010
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-08-24T19:15:24.967
Modified: 2024-11-21T06:05:08.967
Link: CVE-2021-31010
Redhat
No data.