CVE-2021-30869 – Apple / Multiple – Type confusion

CVE-2021-30869 is a type confusion vulnerability impacting Apple iOS versions 12.5.4 and earlier, and macOS Catalina security update 2021-005 and earlier. A proof of concept (PoC) was not observed publicly or in the underground. Apple claimed to be aware of the vulnerability being actively exploited in the wild.

Summary:

CVE-2021-30869 is a type confusion vulnerability impacting Apple iOS versions 12.5.4 and earlier, and macOS Catalina security update 2021-005 and earlier. A proof of concept (PoC) was not observed publicly or in the underground. Apple claimed to be aware of the vulnerability being actively exploited in the wild.

PoC Links(if available):

Apple exploitation information –
https://support.apple.com/en-gb/HT212825

Known Counter Measures:

Apple addressed the vulnerability in security advisories with updated versions.

Links to patches(if available)

https://support.apple.com/en-gb/HT212825