CVE-2021-0115 is a vulnerability that affects Apple's iOS and iPadOS operating systems. The vulnerability allows remote attackers to execute arbitrary code with kernel privileges, which can lead to a complete compromise of the affected device. The flaw was caused by a memory corruption issue in the handling of user-supplied data.
The vulnerability was discovered and reported to Apple by an anonymous researcher in January 2021. Apple released a security update for iOS and iPadOS on March 8, 2021, addressing the vulnerability. The patch was included in the iOS 14.4.2 and iPadOS 14.4.2 updates.
If left unpatched, the vulnerability could be exploited by attackers to gain full control over an iPhone or iPad remotely. The impact of such an attack could range from theft of sensitive information to more serious consequences such as surveillance or destruction of the device. Therefore, it is important for users to ensure that their devices are running the latest version of iOS or iPadOS to protect against this vulnerability.