CVE-2021-30785: Apple macOS ImageIO PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
First published: Mon Jul 19 2021(Updated: )
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. Processing a maliciously crafted image may lead to arbitrary code execution.
Credit: Mickey Jin @patch1t Trend MicroCFF Topsec Alpha TeamCFF Topsec Alpha TeamMickey Jin @patch1t Trend MicroCFF Topsec Alpha TeamMickey Jin @patch1t Trend MicroMickey Jin @patch1t Trend Micro working with Trend Micro Zero Day InitiativeCFF Topsec Alpha TeamMickey Jin @patch1t Trend MicroCFF Topsec Alpha TeamMickey Jin @patch1t Trend Micro product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS | <11.5 | 11.5 |
| tvOS | <14.7 | 14.7 |
| macOS Catalina | ||
| Apple iOS and macOS | ||
| Apple iOS, iPadOS, and watchOS | <7.6 | 7.6 |
| Apple iCloud | <12.5 | 12.5 |
| Apple iTunes | <12.11.4 | 12.11.4 |
| iStyle @cosme iPhone OS | <14.7 | |
| Apple iOS and macOS | >=10.15<=10.15.6 | |
| Apple iOS and macOS | =10.15.7 | |
| Apple iOS and macOS | =10.15.7-security_update_2020 | |
| Apple iOS and macOS | =10.15.7-security_update_2020-001 | |
| Apple iOS and macOS | =10.15.7-security_update_2020-005 | |
| Apple iOS and macOS | =10.15.7-security_update_2020-007 | |
| Apple iOS and macOS | =10.15.7-security_update_2021-001 | |
| Apple iOS and macOS | =10.15.7-security_update_2021-002 | |
| Apple iOS and macOS | =10.15.7-security_update_2021-003 | |
| Apple iOS and macOS | =10.15.7-supplemental_update | |
| Apple iOS and macOS | <11.5 | |
| tvOS | <14.7 | |
| Apple iOS, iPadOS, and watchOS | <7.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212600 (Advisory)
- https://support.apple.com/en-us/HT212602 (Advisory)
- https://support.apple.com/en-us/HT212604 (Advisory)
- https://support.apple.com/en-us/HT212605 (Advisory)
- https://support.apple.com/en-us/HT212607 (Advisory)
- https://support.apple.com/en-us/HT212609 (Advisory)
- https://support.apple.com/en-us/HT212601
- https://www.zerodayinitiative.com/advisories/ZDI-22-353/
- https://support.apple.com/HT212602
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30805
- CVE-2021-30871
- CVE-2021-30790
- CVE-2021-31006
- CVE-2021-30781
- CVE-2021-30748
- CVE-2021-30775
- CVE-2021-30776
- CVE-2021-30786
- CVE-2021-30772
- CVE-2021-30783
- CVE-2021-30777
- CVE-2021-30789
- CVE-2021-30774
- CVE-2021-30780
- CVE-2021-30768
- CVE-2021-30817
- CVE-2021-30804
- CVE-2021-30760
- CVE-2021-30788
- CVE-2021-30759
- CVE-2021-30803
- CVE-2021-30779
- CVE-2021-30785
- CVE-2021-30787
- CVE-2021-30766
- CVE-2021-30765
- CVE-2021-30784
- CVE-2021-30793
- CVE-2021-30778
- CVE-2021-30677
- CVE-2021-3518
- CVE-2021-30796
- CVE-2021-30792
- CVE-2021-30791
- CVE-2021-1821
- CVE-2021-30782
- CVE-2021-31004
- CVE-2021-30798
- CVE-2021-30758
- CVE-2021-30795
- CVE-2021-30797
- CVE-2021-30799
- CVE-2021-30773
- CVE-2021-30802
- CVE-2021-30769
- CVE-2021-30770
- CVE-2021-30811
- CVE-2021-30672
- CVE-2021-30733
- CVE-2021-30731
- CVE-2021-30703
- CVE-2021-30763
Frequently Asked Questions
What is CVE-2021-30785?
CVE-2021-30785 is a vulnerability in ImageIO that allows a buffer overflow due to insufficient bounds checking.
What software products are affected by CVE-2021-30785?
CVE-2021-30785 affects Apple watchOS up to version 7.6, Apple tvOS up to version 14.7, Apple iTunes for Windows up to version 12.11.4, Apple Catalina, Apple macOS Big Sur up to version 11.5, and Apple iCloud for Windows up to version 12.5.
How severe is CVE-2021-30785?
The severity of CVE-2021-30785 is not specified in the provided information.
How can I fix CVE-2021-30785?
To fix CVE-2021-30785, you should update your affected software to the latest version provided by Apple.
Where can I find more information about CVE-2021-30785?
You can find more information about CVE-2021-30785 on the Apple support website.
- agent/type
- agent/first-publish-date
- agent/references
- agent/title
- agent/weakness
- agent/severity
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/description
- agent/trending
- agent/source
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-22-353
- alias/ZDI-CAN-13806
- alias/CVE-2021-30785
- agent/software-canonical-lookup
- agent/tags
- agent/event
- collector/nvd-index
- agent/softwarecombine
- vendor/apple
- canonical/apple macos
- canonical/tvos
- canonical/macos catalina
- canonical/apple ios and macos
- canonical/apple ios, ipados, and watchos
- canonical/apple icloud
- canonical/apple itunes
- canonical/istyle @cosme iphone os
- version/apple ios and macos/10.15
- version/apple ios and macos/10.15.6
- version/apple ios and macos/10.15.7
- version/apple ios and macos/10.15.7-security_update_2020
- version/apple ios and macos/10.15.7-security_update_2020-001
- version/apple ios and macos/10.15.7-security_update_2020-005
- version/apple ios and macos/10.15.7-security_update_2020-007
- version/apple ios and macos/10.15.7-security_update_2021-001
- version/apple ios and macos/10.15.7-security_update_2021-002
- version/apple ios and macos/10.15.7-security_update_2021-003
- version/apple ios and macos/10.15.7-supplemental_update