Severity

Medium

Analysis Summary

CVE-2021-30918

Apple iOS and iPadOS could allow a physical attacker to obtain sensitive information, caused by a state management issue in the Status Bar component. By performing specially-crafted operations, an attacker could exploit this vulnerability to view restricted content from the lockscreen, and use this information to launch further attacks against the affected system.

Impact

• Information Disclosure

Affected Vendors

Apple

Affected Products

• Apple iOS 15.0
• Apple iPadOS 15.0

Remediation

Refer to Apple Advisory for patch, upgrade, or suggested workaround information.