CVE-2021-1847: 
macOS vulnerability analysis and mitigation

CVE-2021-1847 is a memory corruption vulnerability discovered in Apple's CoreGraphics component. The vulnerability was disclosed and patched in April 2021, affecting multiple versions of macOS including Big Sur, Catalina, and Mojave. The issue was identified by Xuwei Liu of Purdue University (Apple Security).

The vulnerability stems from a memory corruption issue in the CoreGraphics component that was addressed with improved validation. The vulnerability has a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating local access, low attack complexity, no privileges required, and user interaction required (NVD).

When exploited, this vulnerability could allow an attacker to cause unexpected application termination or execute arbitrary code by having a user open a maliciously crafted file. The vulnerability affects the system's ability to handle file processing securely (Apple Security).

Apple addressed this vulnerability in macOS Big Sur 11.3, Security Update 2021-002 Catalina, and Security Update 2021-003 Mojave. Users are advised to update their systems to these versions or later to protect against this vulnerability (Apple Security, Apple Catalina, Apple Mojave).