CVE-2021-30826

HIGH

iPadOS < 15.0 - Unprotected Data Transmission via Baseband Logic Issue

Title source: llm
STIX 2.1

Description

A logic issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. In certain situations, the baseband would fail to enable integrity and ciphering protection.

References (3)

Core 3
Core References
Release Notes, Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT212807
Release Notes, Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT212814
Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2021/Oct/61

Scores

CVSS v3 7.5
EPSS 0.0121
EPSS Percentile 65.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

Status published
Products (2)
apple/ipados < 15.0
apple/iphone_os < 15.0
Published Oct 19, 2021
Tracked Since Feb 18, 2026