Vulnerability Details : CVE-2021-30860
An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Vulnerability category: Overflow
CVE-2021-30860 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Apple Multiple Products Integer Overflow Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Apple iOS, iPadOS, macOS, and watchOS CoreGraphics contain an integer overflow vulnerability which may allow code execution when processing a maliciously crafted PDF. The vulnerability is also known under the moniker of FORCEDENTRY.
Added on
2021-11-03
Action due date
2021-11-17
Exploit prediction scoring system (EPSS) score for CVE-2021-30860
Probability of exploitation activity in the next 30 days: 0.18%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 55 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2021-30860
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2021-30860
-
The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-30860
-
https://support.apple.com/en-us/HT212806
About the security content of watchOS 7.6.2 - Apple SupportVendor Advisory
-
https://support.apple.com/en-us/HT212804
About the security content of macOS Big Sur 11.6 - Apple SupportVendor Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/50
Full Disclosure: APPLE-SA-2021-09-23-1 iOS 12.5.5Mailing List;Third Party Advisory
-
https://support.apple.com/kb/HT212824
About the security content of iOS 12.5.5 - Apple SupportVendor Advisory
-
https://support.apple.com/en-us/HT212807
About the security content of iOS 14.8 and iPadOS 14.8 - Apple SupportVendor Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/26
Full Disclosure: APPLE-SA-2021-09-13-2 watchOS 7.6.2Mailing List;Third Party Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/25
Full Disclosure: APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8Mailing List;Third Party Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/28
Full Disclosure: APPLE-SA-2021-09-13-4 Security Update 2021-005 CatalinaMailing List;Third Party Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/38
Full Disclosure: APPLE-SA-2021-09-20-6 Additional information for APPLE-SA-2021-09-13-1 iOS 14.8 and iPadOS 14.8Mailing List;Third Party Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/40
Full Disclosure: APPLE-SA-2021-09-20-8 Additional information for APPLE-SA-2021-09-13-4 Security Update 2021-005 CatalinaMailing List;Third Party Advisory
-
https://support.apple.com/en-us/HT212805
About the security content of Security Update 2021-005 Catalina - Apple SupportVendor Advisory
-
http://www.openwall.com/lists/oss-security/2022/09/02/11
oss-security - JBIG2 integer overflow fixed in Xpdf 4.04, Poppler 22.09.0Mailing List
-
http://seclists.org/fulldisclosure/2021/Sep/27
Full Disclosure: APPLE-SA-2021-09-13-3 macOS Big Sur 11.6Mailing List;Third Party Advisory
-
https://security.gentoo.org/glsa/202209-21
Poppler: Arbitrary Code Execution (GLSA 202209-21) — Gentoo securityThird Party Advisory
-
http://seclists.org/fulldisclosure/2021/Sep/39
Full Disclosure: APPLE-SA-2021-09-20-7 Additional information for APPLE-SA-2021-09-13-3 macOS Big Sur 11.6Mailing List;Third Party Advisory
Products affected by CVE-2021-30860
- cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:-:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020-001:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2020:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-001:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-002:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-003:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.15.7:security_update_2021-004:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:*:*:*:*:*:*:*:*