| Vulnerability Name: | CVE-2021-30826 (CCN-209766) | ||||||||||||
| Assigned: | 2021-09-20 | ||||||||||||
| Published: | 2021-09-20 | ||||||||||||
| Updated: | 2022-03-25 | ||||||||||||
| Summary: | A logic issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. In certain situations, the baseband would fail to enable integrity and ciphering protection. | ||||||||||||
| CVSS v3 Severity: | 7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N) 6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
| ||||||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2021-30826 Source: FULLDISC Type: Mailing List, Third Party Advisory 20211027 APPLE-SA-2021-10-26-9 Additional information for APPLE-SA-2021-09-20-1 iOS 15 and iPadOS 15 Source: XF Type: UNKNOWN apple-ios-cve202130826-sec-bypass(209766) Source: CCN Type: Apple security document HT212814 About the security content of iOS 15 and iPadOS 15 Source: MISC Type: Release Notes, Vendor Advisory https://support.apple.com/en-us/HT212814 Source: CONFIRM Type: Release Notes, Vendor Advisory https://support.apple.com/kb/HT212807 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||