CVE-2021-30737

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 14.6 Apple iPadOS versions prior to 14.6 Apple tvOS versions prior to 14.6 Apple macOS versions prior to 11.4 Apple watchOS versions prior to 7.5 Apple macOS Mojave versions prior to Security Update 2021-004 Apple macOS Catalina versions prior to Security Update 2021-003 Apple iOS versions prior to 12.5.4

Description A memory corruption issue in the ASN.1 decoder may lead to arbitrary code execution when processing a maliciously crafted certificate.

Recommendations For iOS versions prior to 14.6, update to iOS 14.6 or later. For iPadOS versions prior to 14.6, update to iPadOS 14.6 or later. For tvOS versions prior to 14.6, update to tvOS 14.6 or later. For macOS versions prior to 11.4, update to macOS Big Sur 11.4 or later. For watchOS versions prior to 7.5, update to watchOS 7.5 or later. For macOS Mojave, apply Security Update 2021-004 or later. For macOS Catalina, apply Security Update 2021-003 or later. For iOS versions prior to 12.5.4, update to iOS 12.5.4 or later.