A deserialization issue was addressed through improved validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 12.5.5, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. A sandboxed process may be able to circumvent sandbox restrictions. Apple was aware of a report that this issue may have been actively exploited at the time of release..
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2021-08-24T18:51:48

Updated: 2024-08-03T22:48:14.391Z

Reserved: 2021-04-13T00:00:00

Link: CVE-2021-31010

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-24T19:15:24.967

Modified: 2024-11-21T06:05:08.967

Link: CVE-2021-31010

cve-icon Redhat

No data.