PT-2021-4934 · Apple+5 · Ios+5

Published

2020-05-07

Updated

2025-10-23

CVE-2021-30762

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 12.5.4

Description A use after free issue was addressed with improved memory management. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

Recommendations For versions prior to 12.5.4, update to iOS 12.5.4 to resolve the issue. As a temporary workaround, consider avoiding the processing of maliciously crafted web content until the update is applied. Restrict access to untrusted web content to minimize the risk of exploitation.

Exploit

Fix

RCE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-416

Related Identifiers

ALSA-2020:4451

BDU:2021-05677

CESA-2020_4035

CESA-2020_4451

CVE-2021-30762

DSA-4681-1

OPENSUSE-SU-2022:0182-1

OPENSUSE-SU-2022_0182-1

OPENSUSE-SU-2022_0182-2

RHSA-2020:4035

RHSA-2020:4451

RHSA-2020_4035

RHSA-2020_4451

RHSA-2025:10364

RLSA-2020:4451

RLSA-2020_4451

SUSE-SU-2022:0142-1

SUSE-SU-2022:0182-1

SUSE-SU-2022:0182-2

SUSE-SU-2022:0183-1

Affected Products

Almalinux

Centos

Red Hat

Rocky Linux

Suse

Ios

PT-2021-4934 · Apple+5 · Ios+5

CVE-2021-30762

Weakness Enumeration

Related Identifiers

Affected Products

References · 266