← Back to CVEs
CVE-2021-30997
HIGH7.5
Description
A S/MIME issue existed in the handling of encrypted email. This issue was addressed by not automatically loading some MIME parts. This issue is fixed in iOS 15.2 and iPadOS 15.2. An attacker may be able to recover plaintext contents of an S/MIME-encrypted e-mail.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published8/24/2021
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
apple:ipadosapple:iphone_os
Weaknesses (CWE)
CWE-312
References
https://support.apple.com/en-us/HT212976(product-security@apple.com)
https://support.apple.com/en-us/HT212976(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.