CVE-2021-1871 | Vulnerability Database | Aqua Security

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..

Affected Software

Name	Vendor	Start Version	End Version
Ipad_os	Apple	*	14.4 (excluding)
Iphone_os	Apple	*	14.4 (excluding)
Mac_os_x	Apple	10.15 (including)	10.15.7 (excluding)
Mac_os_x	Apple	10.15.7 (including)	10.15.7 (including)
Mac_os_x	Apple	10.15.7-security_update_2020 (including)	10.15.7-security_update_2020 (including)
Mac_os_x	Apple	10.15.7-supplemental_update (including)	10.15.7-supplemental_update (including)
Macos	Apple	11.0.1 (including)	11.2 (excluding)

References

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L3L6ZZOU5JS7E3RFYGLP7UFLXCG7TNLU/
https://support.apple.com/en-us/HT212146
https://support.apple.com/en-us/HT212147
https://www.debian.org/security/2021/dsa-4923

NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-1871
CWE	https://cwe.mitre.org/data/definitions/.html