CVE-2021-30918

LOW

iPadOS < 14.8.1 and iOS < 14.8.1 - Unprotected User Data Exposure via Lock Screen

Title source: llm
STIX 2.1

Description

A Lock Screen issue was addressed with improved state management. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.0.1 and iPadOS 15.0.1. A user may be able to view restricted content from the Lock Screen.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT212868
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT212866
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT213183
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2022/Mar/29

Scores

CVSS v3 2.4
EPSS 0.0033
EPSS Percentile 24.9%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

Status published
Products (5)
apple/ipad_os < 14.8.1
apple/ipados 15.0
apple/iphone_os 15.0
apple/iphone_os < 14.8.1
apple/macos 12.0.0 - 12.3
Published Aug 24, 2021
Tracked Since Feb 18, 2026