QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2021-30860

Back to search

CVE-2021-30860

Published: Aug 24, 2021

Modified: Oct 21, 2025

PUBLISHED

Description

An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

VendorProductVersions

Apple

macOS

affected
unspecified - < 11.6

Apple

macOS

affected
unspecified - < 2021-005

Apple

watchOS

affected
unspecified - < 7.6

Apple

iOS

affected
unspecified - < 14.8

References

20210917 APPLE-SA-2021-09-13-2 watchOS 7.6.2
mailing-list
x_refsource_FULLDISC
20210924 APPLE-SA-2021-09-23-1 iOS 12.5.5
mailing-list
x_refsource_FULLDISC
GLSA-202209-21
vendor-advisory
x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now