CVE-2021-30752: Input Validation
First published: Mon Apr 26 2021(Updated: )
Compression. An out-of-bounds read was addressed with improved input validation.
Credit: Ye Zhang @co0py_Cat Baidu SecurityYe Zhang @co0py_Cat Baidu SecurityYe Zhang @co0py_Cat Baidu SecurityYe Zhang @co0py_Cat Baidu Security product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iOS | <14.5 | 14.5 |
| Apple iPadOS | <14.5 | 14.5 |
| Apple tvOS | <14.5 | 14.5 |
| <7.4 | 7.4 | |
| Apple macOS Big Sur | <11.3 | 11.3 |
| Apple iPadOS | <14.5 | |
| Apple iPhone OS | <14.5 | |
| Apple macOS | >=11.0<11.3 | |
| Apple tvOS | <14.5 | |
| Apple watchOS | <7.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-1835
- CVE-2021-1837
- CVE-2021-1867
- CVE-2021-1849
- CVE-2021-1836
- CVE-2021-1808
- CVE-2021-30742
- CVE-2021-1857
- CVE-2021-30752
- CVE-2021-30664
- CVE-2021-1846
- CVE-2021-1809
- CVE-2021-30659
- CVE-2021-1812
- CVE-2021-1811
- CVE-2021-1872
- CVE-2021-1881
- CVE-2021-1882
- CVE-2021-1813
- CVE-2021-30656
- CVE-2021-1883
- CVE-2021-1884
- CVE-2021-30743
- CVE-2021-1885
- CVE-2021-30653
- CVE-2021-1843
- CVE-2021-1858
- CVE-2021-30764
- CVE-2021-30662
- CVE-2021-1864
- CVE-2021-1877
- CVE-2021-1852
- CVE-2021-1830
- CVE-2021-1874
- CVE-2021-1851
- CVE-2021-1860
- CVE-2021-1816
- CVE-2021-1832
- CVE-2021-30660
- CVE-2021-30652
- CVE-2021-1875
- CVE-2021-1833
- CVE-2021-1822
- CVE-2021-1865
- CVE-2021-1815
- CVE-2021-1739
- CVE-2021-1740
- CVE-2021-1863
- CVE-2021-1807
- CVE-2021-1831
- CVE-2021-1862
- CVE-2021-1868
- CVE-2021-1854
- CVE-2021-30921
- CVE-2021-1848
- CVE-2021-1825
- CVE-2021-1817
- CVE-2021-1826
- CVE-2021-1820
- CVE-2021-30661
- CVE-2020-7463
- CVE-2021-1770
- CVE-2021-1844
- CVE-2021-1880
- CVE-2021-1814
- CVE-2021-1853
- CVE-2021-1810
- CVE-2021-1847
- CVE-2020-8284
- CVE-2020-8286
- CVE-2020-8285
- CVE-2021-1784
- CVE-2021-30658
- CVE-2021-1841
- CVE-2021-1834
- CVE-2021-1840
- CVE-2021-1824
- CVE-2021-1859
- CVE-2021-1876
- CVE-2021-1861
- CVE-2021-1855
- CVE-2021-30750
- CVE-2021-1878
- CVE-2021-30657
- CVE-2021-30856
- CVE-2020-8037
- CVE-2021-1839
- CVE-2021-1828
- CVE-2021-1829
- CVE-2021-30655
- CVE-2021-1873
Frequently Asked Questions
What is CVE-2021-30752?
CVE-2021-30752 is a vulnerability related to compression where an out-of-bounds read was addressed with improved input validation.
What is the impact of CVE-2021-30752?
The impact of CVE-2021-30752 is that processing a maliciously crafted image may lead to arbitrary code execution.
Which software versions are affected by CVE-2021-30752?
CVE-2021-30752 affects Apple watchOS 7.4, Apple iOS up to version 14.5, Apple iPadOS up to version 14.5, Apple macOS Big Sur up to version 11.3, and Apple tvOS up to version 14.5.
How can I fix CVE-2021-30752?
To fix CVE-2021-30752, update your Apple watchOS to version 7.4, Apple iOS to version 14.5, Apple iPadOS to version 14.5, Apple macOS Big Sur to version 11.3, and Apple tvOS to version 14.5.
Where can I find more information about CVE-2021-30752?
For more information about CVE-2021-30752, you can refer to the following references: [Link 1](https://support.apple.com/en-us/HT212317), [Link 2](https://support.apple.com/en-us/HT212324), [Link 3](https://support.apple.com/en-us/HT212325).
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/apple-support
- agent/software-canonical-lookup-request
- source/Apple
- agent/software-canonical-lookup
- collector/nvd-index
- vendor/apple
- canonical/apple ios
- canonical/apple ipados
- canonical/apple tvos
- canonical/apple watchos
- canonical/apple macos big sur
- canonical/apple iphone os
- canonical/apple macos
- version/apple macos/11.0