Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A memory corruption issue in the ASN.1 decoder was addressed by removing the vulnerable code. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, iOS 12.5.4, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted certificate may lead to arbitrary code execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple tvOS 缓冲区错误漏洞
Vulnerability Description
Apple tvOS是美国苹果(Apple)公司的一套智能电视操作系统。 tvOS 存在缓冲区错误漏洞,该漏洞源于处理TLS证书时ASN.1解码器的边界错误。远程攻击者利用该漏洞可以欺骗受害者访问专门设计的网站,用专门设计的TLS证书触发内存损坏,并在系统上执行任意代码。受影响的产品及版本:tvOS: 14.0 18J386、14.0.1 18J400、14.0.2 18J411、14.2 18K57、14.3 18K561、14.4 18K802、14.5 18L204
CVSS Information
N/A
Vulnerability Type
N/A