What is the vulnerability ID for this issue?

The vulnerability ID for this issue is CVE-2021-30902.

What is the title of this vulnerability?

The title of this vulnerability is Voice Control. A use after free issue was addressed with improved memory management.

What is the affected software?

The affected software includes Apple iOS versions up to and excluding 15.1, Apple iPadOS versions up to and excluding 15.1, Apple iOS versions up to and excluding 14.8.1, and Apple iPadOS versions up to and excluding 14.8.1.

How was this vulnerability addressed?

This vulnerability was addressed with improved memory management.

Where can I find more information about this vulnerability?

You can find more information about this vulnerability on the following references: [Link 1](https://support.apple.com/en-us/HT212867), [Link 2](https://support.apple.com/en-us/HT212868).

Vulnerability/
CVE-2021-30902

high

7.8

CWE

416

24/8/2021

3/8/2024

CVE-2021-30902: Use After Free

First published: Tue Aug 24 2021(Updated: )

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1. A local attacker may be able to cause unexpected application termination or arbitrary code execution.

Credit: 08Tc3wBB ZecOps Mobile EDR Team cve@mitre.org

Affected Software	Affected Version	How to fix
Apple iOS, iPadOS, and watchOS	<15.1	15.1
Apple iOS, iPadOS, and watchOS	<15.1	15.1
Apple iOS, iPadOS, and watchOS	<14.8.1	14.8.1
Apple iOS, iPadOS, and watchOS	<14.8.1	14.8.1
iPadOS	<14.8.1
Apple iOS, iPadOS, and watchOS	=15.0
iOS	<14.8.1
iOS	=15.0

Never miss a vulnerability like this again

Reference Links

https://support.apple.com/en-us/HT212867 (Advisory)
https://support.apple.com/en-us/HT212868 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-30902.
What is the title of this vulnerability?
The title of this vulnerability is Voice Control. A use after free issue was addressed with improved memory management.
What is the affected software?
The affected software includes Apple iOS versions up to and excluding 15.1, Apple iPadOS versions up to and excluding 15.1, Apple iOS versions up to and excluding 14.8.1, and Apple iPadOS versions up to and excluding 14.8.1.
How was this vulnerability addressed?
This vulnerability was addressed with improved memory management.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability on the following references: [Link 1](https://support.apple.com/en-us/HT212867), [Link 2](https://support.apple.com/en-us/HT212868).

agent/type
agent/references
agent/severity
agent/weakness
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/trending
agent/source
agent/author
agent/tags
agent/softwarecombine
collector/apple-support
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/apple ios, ipados, and watchos
canonical/ipados
version/apple ios, ipados, and watchos/15.0
canonical/ios
version/ios/15.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.