CVE-2021-30867
CVE-2021-30867
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
24 Aug 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The issue was addressed with improved authentication. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to access photo metadata without needing permission to access photos.
Affected products
Apple · iOS and iPadOS