CVE-2021-30996: Race Condition
First published: Tue Aug 24 2021(Updated: )
A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.
Credit: Saar Amar @AmarSaar Saar Amar @AmarSaar cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iOS | <15.2 | 15.2 |
| Apple iPadOS | <15.2 | 15.2 |
| Apple macOS Monterey | <12.1 | 12.1 |
| Apple iPadOS | <15.2 | |
| Apple iPhone OS | <15.2 | |
| Apple macOS | <12.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.apple.com/en-us/HT212976 (Advisory)
- https://support.apple.com/en-us/HT212978 (Advisory)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2021-30987
- CVE-2021-30950
- CVE-2021-30960
- CVE-2021-30986
- CVE-2021-30966
- CVE-2021-30926
- CVE-2021-30942
- CVE-2021-30957
- CVE-2021-30958
- CVE-2021-30935
- CVE-2021-30945
- CVE-2021-31007
- CVE-2021-31013
- CVE-2021-31000
- CVE-2021-30977
- CVE-2021-30939
- CVE-2021-30981
- CVE-2021-30996
- CVE-2021-30982
- CVE-2021-30937
- CVE-2021-30927
- CVE-2021-30980
- CVE-2021-30949
- CVE-2021-30993
- CVE-2021-30955
- CVE-2021-30976
- CVE-2021-30990
- CVE-2021-30943
- CVE-2021-31009
- CVE-2021-30971
- CVE-2021-30973
- CVE-2021-30929
- CVE-2021-30979
- CVE-2021-30940
- CVE-2021-30941
- CVE-2021-30995
- CVE-2021-30968
- CVE-2021-30946
- CVE-2021-30947
- CVE-2021-30975
- CVE-2021-30944
- CVE-2021-30972
- CVE-2021-30767
- CVE-2021-30964
- CVE-2021-30970
- CVE-2021-30965
- CVE-2021-30934
- CVE-2021-30936
- CVE-2021-30951
- CVE-2021-30952
- CVE-2021-30984
- CVE-2021-30953
- CVE-2021-30954
- CVE-2021-30938
- CVE-2021-30956
- CVE-2021-30992
- CVE-2021-30983
- CVE-2021-30985
- CVE-2021-30991
- CVE-2021-30998
- CVE-2021-30997
- CVE-2021-30967
- CVE-2021-30988
- CVE-2021-30932
- CVE-2021-30948
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-30996.
What is the title of this vulnerability?
The title of this vulnerability is 'IOMobileFrameBuffer. A race condition was addressed with improved state handling.'
What is the affected software for this vulnerability?
The affected software for this vulnerability includes Apple iOS, Apple iPadOS, and Apple macOS Monterey.
What is the severity level of this vulnerability?
The severity level of this vulnerability is not specified.
How do I fix this vulnerability?
To fix this vulnerability, update your device to Apple iOS 15.2, Apple iPadOS 15.2, or Apple macOS Monterey 12.1.
- collector/apple-support
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/tags
- agent/event
- agent/software-canonical-lookup-request
- agent/description
- collector/nvd-index
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple macos monterey
- canonical/apple ios
- canonical/apple ipados
- canonical/apple iphone os
- canonical/apple macos