Arbitrary Code Execution via Integer Overflow in Apple Devices

Arbitrary Code Execution via Integer Overflow in Apple Devices

CVE-2021-30952 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution.

Learn more about our Cis Benchmark Audit For Apple Ios.