Tuesday, September 21, 2021

Processing a maliciously crafted PDF may lead to arbitrary code execution

Description
An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Solution(s)
  • apple-osx-security-update-2021-005
  • apple-osx-upgrade-10_15_7
  • apple-osx-upgrade-11_6


  • References
  • https://attackerkb.com/topics/cve-2021-30860
  • CVE - 2021-30860




  •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore