CVE-2021-1862
First published: Mon Apr 26 2021(Updated: )
Siri. Description: A person with physical access may be able to access contacts.
Credit: Anshraj Srivastava @AnshrajSrivas14 UKEF product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iPadOS | <14.5 | |
| Apple iPhone OS | <14.5 | |
| Apple iOS | <14.5 | 14.5 |
| Apple iPadOS | <14.5 | 14.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212317 (Advisory)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-1835
- CVE-2021-1837
- CVE-2021-1867
- CVE-2021-1849
- CVE-2021-1836
- CVE-2021-1808
- CVE-2021-30742
- CVE-2021-1857
- CVE-2021-30752
- CVE-2021-30664
- CVE-2021-1846
- CVE-2021-1809
- CVE-2021-30659
- CVE-2021-1812
- CVE-2021-1811
- CVE-2021-1872
- CVE-2021-1881
- CVE-2021-1882
- CVE-2021-1813
- CVE-2021-30656
- CVE-2021-1883
- CVE-2021-1884
- CVE-2021-30743
- CVE-2021-1885
- CVE-2021-30653
- CVE-2021-1843
- CVE-2021-1858
- CVE-2021-30764
- CVE-2021-30662
- CVE-2021-1864
- CVE-2021-1877
- CVE-2021-1852
- CVE-2021-1830
- CVE-2021-1874
- CVE-2021-1851
- CVE-2021-1860
- CVE-2021-1816
- CVE-2021-1832
- CVE-2021-30660
- CVE-2021-30652
- CVE-2021-1875
- CVE-2021-1833
- CVE-2021-1822
- CVE-2021-1865
- CVE-2021-1815
- CVE-2021-1739
- CVE-2021-1740
- CVE-2021-1863
- CVE-2021-1807
- CVE-2021-1831
- CVE-2021-1862
- CVE-2021-1868
- CVE-2021-1854
- CVE-2021-30921
- CVE-2021-1848
- CVE-2021-1825
- CVE-2021-1817
- CVE-2021-1826
- CVE-2021-1820
- CVE-2021-30661
- CVE-2020-7463
- CVE-2021-1770
Frequently Asked Questions
What is the vulnerability ID for this Siri vulnerability?
The vulnerability ID for this Siri vulnerability is CVE-2021-1862.
What is the description of CVE-2021-1862?
CVE-2021-1862 is a vulnerability in Siri where a person with physical access may be able to access contacts.
Which software is affected by CVE-2021-1862?
The software affected by CVE-2021-1862 is Apple iOS versions up to and excluding 14.5, and Apple iPadOS versions up to and excluding 14.5.
How can a person exploit this vulnerability?
To exploit CVE-2021-1862, a person needs physical access to the device and may be able to access contacts through Siri.
Is there a fix available for CVE-2021-1862?
Yes, Apple has released a fix for CVE-2021-1862. Users should update their devices to Apple iOS 14.5 or Apple iPadOS 14.5 to address the vulnerability.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple iphone os