CVE-2021-30840 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2021-30840

CWE

https://cwe.mitre.org/data/definitions/.html

This issue was addressed with improved checks. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing a maliciously crafted dfont file may lead to arbitrary code execution.

Affected Software

Name	Vendor	Start Version	End Version
Ipados	Apple	*	15.0 (excluding)
Iphone_os	Apple	*	15.0 (excluding)
Macos	Apple	*	12.0.1 (excluding)
Tvos	Apple	*	15.0 (excluding)
Watchos	Apple	*	8.0 (excluding)

References

https://support.apple.com/en-us/HT212814
https://support.apple.com/en-us/HT212815
https://support.apple.com/en-us/HT212819
https://support.apple.com/kb/HT212869
https://support.apple.com/en-us/HT212814
https://support.apple.com/en-us/HT212815
https://support.apple.com/en-us/HT212819
https://support.apple.com/kb/HT212869