CVE-2021-30701

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 14.6 Apple iPadOS versions prior to 14.6 Apple tvOS versions prior to 14.6 Apple watchOS versions prior to 7.5 Apple macOS versions prior to 11.4 Apple macOS versions prior to Security Update 2021-003 Catalina

Description The issue is related to a buffer out-of-bounds write in the ImageIO component of the operating systems, which can be exploited by processing a maliciously crafted image, potentially leading to arbitrary code execution. An attacker could execute arbitrary code on the target system by using a specially crafted PICT file.

Recommendations For Apple iOS versions prior to 14.6, update to iOS 14.6 or later. For Apple iPadOS versions prior to 14.6, update to iPadOS 14.6 or later. For Apple tvOS versions prior to 14.6, update to tvOS 14.6 or later. For Apple watchOS versions prior to 7.5, update to watchOS 7.5 or later. For Apple macOS versions prior to 11.4, update to macOS Big Sur 11.4 or later. For Apple macOS versions prior to Security Update 2021-003 Catalina, apply Security Update 2021-003 Catalina or later.