CVE-2021-1740: Path Traversal
First published: Mon Apr 26 2021(Updated: )
Preferences. A parsing issue in the handling of directory paths was addressed with improved path validation.
Credit: Zhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Tencent Security Xuanwu LabYuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu LabZhipeng Huo @R3dF09 Yuebin Sun @yuebinsun2020 Tencent Security Xuanwu Lab product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| <7.4 | 7.4 | |
| Apple macOS Big Sur | <11.3 | 11.3 |
| Apple Catalina | ||
| Apple iPadOS | <14.5 | |
| Apple iPhone OS | <14.5 | |
| Apple Mac OS X | >=10.15<=10.15.5 | |
| Apple Mac OS X | =10.15.6 | |
| Apple Mac OS X | =10.15.6-supplemental_update | |
| Apple Mac OS X | =10.15.7 | |
| Apple Mac OS X | =10.15.7 | |
| Apple Mac OS X | =10.15.7-security_update_2020 | |
| Apple Mac OS X | =10.15.7-security_update_2020-001 | |
| Apple Mac OS X | =10.15.7-security_update_2020-005 | |
| Apple Mac OS X | =10.15.7-security_update_2020-007 | |
| Apple Mac OS X | =10.15.7-security_update_2021-001 | |
| Apple Mac OS X | =10.15.7-supplemental_update | |
| Apple macOS | >=11.0<11.3 | |
| Apple tvOS | <14.5 | |
| Apple watchOS | <7.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-1835
- CVE-2021-1837
- CVE-2021-1867
- CVE-2021-1849
- CVE-2021-1836
- CVE-2021-1808
- CVE-2021-30742
- CVE-2021-1857
- CVE-2021-30752
- CVE-2021-30664
- CVE-2021-1846
- CVE-2021-1809
- CVE-2021-30659
- CVE-2021-1812
- CVE-2021-1811
- CVE-2021-1872
- CVE-2021-1881
- CVE-2021-1882
- CVE-2021-1813
- CVE-2021-30656
- CVE-2021-1883
- CVE-2021-1884
- CVE-2021-30743
- CVE-2021-1885
- CVE-2021-30653
- CVE-2021-1843
- CVE-2021-1858
- CVE-2021-30764
- CVE-2021-30662
- CVE-2021-1864
- CVE-2021-1877
- CVE-2021-1852
- CVE-2021-1830
- CVE-2021-1874
- CVE-2021-1851
- CVE-2021-1860
- CVE-2021-1816
- CVE-2021-1832
- CVE-2021-30660
- CVE-2021-30652
- CVE-2021-1875
- CVE-2021-1833
- CVE-2021-1822
- CVE-2021-1865
- CVE-2021-1815
- CVE-2021-1739
- CVE-2021-1740
- CVE-2021-1863
- CVE-2021-1807
- CVE-2021-1831
- CVE-2021-1862
- CVE-2021-1868
- CVE-2021-1854
- CVE-2021-30921
- CVE-2021-1848
- CVE-2021-1825
- CVE-2021-1817
- CVE-2021-1826
- CVE-2021-1820
- CVE-2021-30661
- CVE-2020-7463
- CVE-2021-1770
- CVE-2021-1844
- CVE-2021-1880
- CVE-2021-1814
- CVE-2021-1853
- CVE-2021-1810
- CVE-2021-1847
- CVE-2020-8284
- CVE-2020-8286
- CVE-2020-8285
- CVE-2021-1784
- CVE-2021-30658
- CVE-2021-1841
- CVE-2021-1834
- CVE-2021-1840
- CVE-2021-1824
- CVE-2021-1859
- CVE-2021-1876
- CVE-2021-1861
- CVE-2021-1855
- CVE-2021-30750
- CVE-2021-1878
- CVE-2021-30657
- CVE-2021-30856
- CVE-2020-8037
- CVE-2021-1839
- CVE-2021-1828
- CVE-2021-1829
- CVE-2021-30655
- CVE-2021-1873
- CVE-2021-1797
- CVE-2020-27942
- CVE-2020-3838
Frequently Asked Questions
What is CVE-2021-1740?
CVE-2021-1740 is a vulnerability in Apple iOS, iPadOS, watchOS, macOS Big Sur, Catalina, and tvOS that allows for a parsing issue in the handling of directory paths, which has been addressed with improved path validation.
What is the severity of CVE-2021-1740?
The severity of CVE-2021-1740 is not mentioned in the provided information.
How does CVE-2021-1740 impact Apple iOS?
CVE-2021-1740 affects Apple iOS version up to, but not including, 14.5.
How does CVE-2021-1740 impact Apple iPadOS?
CVE-2021-1740 affects Apple iPadOS version up to, but not including, 14.5.
How does CVE-2021-1740 impact Apple watchOS?
CVE-2021-1740 affects Apple watchOS version up to, but not including, 7.4.
How does CVE-2021-1740 impact Apple macOS Big Sur?
CVE-2021-1740 affects Apple macOS Big Sur version up to, but not including, 11.3.
How does CVE-2021-1740 impact Apple Catalina?
There is no specific information on how CVE-2021-1740 impacts Apple Catalina.
How does CVE-2021-1740 impact Apple tvOS?
CVE-2021-1740 affects Apple tvOS version up to, but not including, 14.5.
How can I fix CVE-2021-1740?
To fix CVE-2021-1740, update your Apple iOS, iPadOS, watchOS, macOS Big Sur, Catalina, or tvOS to version 14.5, 7.4, or 11.3 respectively.
Where can I find more information about CVE-2021-1740?
You can find more information about CVE-2021-1740 at the following references: [1](https://support.apple.com/en-us/HT212326), [2](https://support.apple.com/en-us/HT212317), [3](https://support.apple.com/en-us/HT212324).
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/apple-support
- alias/CVE-2021-1739
- alias/CVE-2021-1740
- agent/software-canonical-lookup-request
- source/Apple
- agent/software-canonical-lookup
- collector/nvd-index
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple tvos
- canonical/apple watchos
- canonical/apple macos big sur
- canonical/apple catalina
- canonical/apple iphone os
- canonical/apple mac os x
- version/apple mac os x/10.15
- version/apple mac os x/10.15.5
- version/apple mac os x/10.15.6
- version/apple mac os x/10.15.6-supplemental_update
- version/apple mac os x/10.15.7
- version/apple mac os x/10.15.7-security_update_2020
- version/apple mac os x/10.15.7-security_update_2020-001
- version/apple mac os x/10.15.7-security_update_2020-005
- version/apple mac os x/10.15.7-security_update_2020-007
- version/apple mac os x/10.15.7-security_update_2021-001
- version/apple mac os x/10.15.7-supplemental_update
- canonical/apple macos
- version/apple macos/11.0