Multiple vulnerabilities in macOS Monterey



Published: 2021-10-27 | Updated: 2022-07-05
Risk High
Patch available YES
Number of vulnerabilities 69
CVE-ID CVE-2021-30873
CVE-2021-30915
CVE-2021-30813
CVE-2021-30910
CVE-2021-30911
CVE-2021-30920
CVE-2021-30868
CVE-2021-30912
CVE-2021-30913
CVE-2021-30823
CVE-2021-30916
CVE-2021-30887
CVE-2021-30888
CVE-2021-30889
CVE-2021-30861
CVE-2021-30890
CVE-2021-30908
CVE-2021-30833
CVE-2021-30892
CVE-2021-30864
CVE-2021-30909
CVE-2021-30876
CVE-2021-30905
CVE-2021-30879
CVE-2021-30877
CVE-2021-30880
CVE-2021-30907
CVE-2021-30899
CVE-2021-30917
CVE-2021-30903
CVE-2021-30919
CVE-2021-30886
CVE-2021-30881
CVE-2021-30895
CVE-2021-30896
CVE-2021-30906
CVE-2021-30824
CVE-2021-30901
CVE-2021-30821
CVE-2021-30883
CVE-2021-30924
CVE-2021-30931
CVE-2021-30897
CVE-2021-30923
CVE-2021-30866
CVE-2021-30904
CVE-2021-30930
CVE-2021-30808
CVE-2021-30809
CVE-2021-30814
CVE-2021-30818
CVE-2021-30831
CVE-2021-30836
CVE-2021-30840
CVE-2021-30846
CVE-2021-30848
CVE-2021-30849
CVE-2021-30851
CVE-2021-30852
CVE-2021-30867
CVE-2021-30874
CVE-2021-30884
CVE-2021-31008
CVE-2021-31005
CVE-2021-30933
CVE-2021-31004
CVE-2021-30994
CVE-2020-9846
CVE-2021-30922
CWE-ID CWE-371
CWE-264
CWE-125
CWE-284
CWE-362
CWE-300
CWE-119
CWE-200
CWE-79
CWE-20
CWE-277
CWE-190
CWE-787
CWE-416
CWE-254
CWE-843
CWE-285
Exploitation vector Network
Public exploit Vulnerability #40 is being exploited in the wild.
Vulnerable software
Subscribe
macOS
Operating systems & Components / Operating system

Vendor Apple Inc.

Security Bulletin

This security bulletin contains information about 69 vulnerabilities.

Updated: 08.12.2021

Added vulnerabilities #41-62.

1) State Issues

EUVDB-ID: #VU57731

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30873

CWE-ID: CWE-371 - State Issues

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a state management issue within the AppKit component. A local user can run a specially crafted program to escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) State Issues

EUVDB-ID: #VU57726

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30915

CWE-ID: CWE-371 - State Issues

Exploit availability: No

Description

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists in the UIKit. An attacker with physical access to the affected system can determine characteristics of a user's password in a secure text entry field and gain unauthorized access to the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

3) Security restrictions bypass

EUVDB-ID: #VU57737

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30813

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to bypass implemented security restrictions.

The vulnerability exists in the Login Window implementation. A person with access to a host Mac is able to bypass the Login Window in Remote Desktop for a locked instance of macOS.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

4) Out-of-bounds read

EUVDB-ID: #VU57721

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30910

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in Model I/O subsystem. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

5) Out-of-bounds read

EUVDB-ID: #VU57722

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30911

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in Model I/O subsystem. A remote attacker can create a specially crafted USD file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

6) Improper access control

EUVDB-ID: #VU57738

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30920

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to incorrect permissions checks in Sandbox subsystem. A local user can gain access to sensitive information.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

7) Race condition

EUVDB-ID: #VU57723

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30868

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition in SMB component. A malicious application can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

8) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU57725

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30912

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists in SoftwareUpdate subsystem. A local user can gain access to a user's Keychain items and obtain sensitive information.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

9) Security restrictions bypass

EUVDB-ID: #VU57724

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30913

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists in the SoftwareUpdate subsystem. A malicious application is able to edit the NVRAM variables and gain unauthorized access to the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

10) Man-in-the-Middle (MitM) attack

EUVDB-ID: #VU57739

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30823

CWE-ID: CWE-300 - Channel Accessible by Non-Endpoint ('Man-in-the-Middle')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists in WebKit. A remote attacker can bypass HSTS and perform MitM attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

11) Buffer overflow

EUVDB-ID: #VU57720

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30916

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the macOS kernel subsystem. A local user can run a specially crafted program to trigger memory corruption and execute arbitrary code with kernel privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

12) Security restrictions bypass

EUVDB-ID: #VU57740

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30887

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due an error within the WebKit component. A remote attacker can trick the victim to open a specially crafted website and bypass Content Security Policy restrictions.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

13) Information disclosure

EUVDB-ID: #VU57741

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30888

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists in WebKit. A malicious website using Content Security Policy reports may be able to leak information via redirect behavior.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

14) Buffer overflow

EUVDB-ID: #VU57742

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30889

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content in WebKit. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

15) Security restrictions bypass

EUVDB-ID: #VU57743

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30861

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists improper permissions checks in WebKit. A remote attacker can bypass Gatekeeper checks and gain access to sensitive information.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

16) Universal Cross-site scripting

EUVDB-ID: #VU57744

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30890

CWE-ID: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Exploit availability: No

Description

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in WebKLit. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

17) Information disclosure

EUVDB-ID: #VU57727

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30908

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output in the Windows Server component. A local user can view the previous logged-in user’s desktop from the fast user switching screen.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

18) Input validation error

EUVDB-ID: #VU57745

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30833

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to insufficient validation of user-supplied input when processing xar archives. A remote attacker can create a specially crafted .xar archive, trick the victim into opening it and overwrite arbitrary files on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise the affected system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

19) Insecure Inherited Permissions

EUVDB-ID: #VU57728

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30892

CWE-ID: CWE-277 - Insecure inherited permissions

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists in the zsh component in macOS due to incorrectly inherited permissions. A local user can modify protected parts of the file system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

20) Security restrictions bypass

EUVDB-ID: #VU57736

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30864

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local application to bypass implemented security restrictions.

The vulnerability exists in the LaunchServices subsystem. A sandboxed process is able to circumvent sandbox restrictions and gain unauthorized access to the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

21) Buffer overflow

EUVDB-ID: #VU57719

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30909

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the macOS kernel subsystem. A local user can run a specially crafted program to trigger memory corruption and execute arbitrary code with kernel privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

22) Out-of-bounds read

EUVDB-ID: #VU57706

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30876

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in AppleScript. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

23) Out-of-bounds read

EUVDB-ID: #VU57730

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30905

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the CoreAudio subsystem. A remote attacker can create a specially crafted audio file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

24) Out-of-bounds read

EUVDB-ID: #VU57707

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30879

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in AppleScript. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

25) Out-of-bounds read

EUVDB-ID: #VU57708

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30877

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in AppleScript. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

26) Out-of-bounds read

EUVDB-ID: #VU57709

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30880

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in AppleScript. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

27) Integer overflow

EUVDB-ID: #VU57710

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30907

CWE-ID: CWE-190 - Integer Overflow or Wraparound

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to integer overflow in the Audio component. A malicious application can trigger integer overflow and execute arbitrary code with elevated privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

28) Race condition

EUVDB-ID: #VU57711

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30899

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a race condition in the Bluetooth subsystem. A malicious application can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

29) Buffer overflow

EUVDB-ID: #VU57712

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30917

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing ICC profiles in ColorSync subsystem. A remote attacker can create a specially crafted image, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

30) Input validation error

EUVDB-ID: #VU57732

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30903

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insufficient validation of user-supplied input in Continuity Camera component. A local user can pass specially crafted input to the application and escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

31) Out-of-bounds write

EUVDB-ID: #VU57713

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30919

CWE-ID: CWE-787 - Out-of-bounds Write

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error within the CoreGraphics subsystem when processing PDF files. A remote attacker can create a specially crafted PDF file, trick the victim into opening it using the affected software, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

32) Use-after-free

EUVDB-ID: #VU57735

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30886

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the macOS kernel. A local user can run a specially crafted program to trigger a use-after-free error and execute arbitrary code with kernel privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

33) Input validation error

EUVDB-ID: #VU57714

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30881

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to insufficient validation of user-supplied input in FileProvider. A remote attacker trick  the victim to open a specially crafted archive and execute arbitrary code on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

34) Information disclosure

EUVDB-ID: #VU57733

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30895

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a malicious application to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the Game Center. A malicious application can gain unauthorized access to user's contacts.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

35) Information disclosure

EUVDB-ID: #VU57734

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30896

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a local application to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the Game Center. A malicious application can gain unauthorized access to user's gameplay data.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

36) Security restrictions bypass

EUVDB-ID: #VU57717

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30906

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due improper permissions checks in iCloud. A local user can bypass security restrictions bypass and escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

37) Buffer overflow

EUVDB-ID: #VU57715

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30824

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in Intel Graphics Driver. A local user can run a specially crafted program to trigger memory corruption and execute arbitrary code with kernel privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

38) Out-of-bounds write

EUVDB-ID: #VU57716

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30901

CWE-ID: CWE-787 - Out-of-bounds Write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when processing untrusted input in the Intel Graphics Driver. A local user can run a specially crafted program to trigger an out-of-bounds write and execute arbitrary code on the system with kernel privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

39) Buffer overflow

EUVDB-ID: #VU57718

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30821

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error in the IOGraphics subsystem. A local user can run a specially crafted program to trigger memory corruption and execute arbitrary code with kernel privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

40) Integer overflow

EUVDB-ID: #VU57217

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30883

CWE-ID: CWE-190 - Integer Overflow or Wraparound

Exploit availability: Yes

Description

The vulnerability allows a malicious application to escalate privileges on the system.

The vulnerability exists due to a boundary error within the IOMobileFrameBuffer subsystem. A malicious application can trigger integer overflow and execute arbitrary code on with kernel privileges.

Note, the vulnerability is being actively exploited in the wild.



Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

41) State Issues

EUVDB-ID: #VU58675

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30924

CWE-ID: CWE-371 - State Issues

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to state handling issues within the macOS kernel. A remote attacker can send specially crafted traffic to the system and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

42) Information disclosure

EUVDB-ID: #VU58671

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30931

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a local user to read kernel memory.

The vulnerability exists due to a logic error in the Bluetooth subsystem. A local user can read parts of kernel memory.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

43) Information disclosure

EUVDB-ID: #VU58677

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30897

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists in the WebKit specification for the resource timing API. A remote attacker can exfiltrate cross-origin data, if the victim visits a specially crafted website.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

44) Race condition

EUVDB-ID: #VU58674

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30923

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the File System component. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

45) Information disclosure

EUVDB-ID: #VU58672

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30866

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to track users.

The vulnerability exists due to excessive data output in the bootp subsystem, as the daemon broadcasts user's MAC address. A remote attacker can track users by their WiFi MAC address.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

46) State Issues

EUVDB-ID: #VU58676

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30904

CWE-ID: CWE-371 - State Issues

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists in the iMessage due to software continues to sync even after successful log out. This leads to message being sent to the system where the user was previously logged in.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

47) State Issues

EUVDB-ID: #VU58679

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30930

CWE-ID: CWE-371 - State Issues

Exploit availability: No

Description

The vulnerability allows a remote attacker to track users through their IP address.

The vulnerability exists due to a logic issue in WebRTC implementation. A remote attacker can track users through their IP address.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

48) Security features bypass

EUVDB-ID: #VU58695

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30808

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a local application to bypass implemented security restrictions.

The vulnerability exists in Sandbox implementation. A local application can bypass sandbox restrictions and modify protected parts of the file system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

49) Use-after-free

EUVDB-ID: #VU58701

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30809

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content in WebKit. A remote attacker can trick the victim to visit a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

50) Buffer overflow

EUVDB-ID: #VU58690

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30814

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing images within the ImageIO subsystem. A remote attacker can create a specially crafted image, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

51) Type Confusion

EUVDB-ID: #VU58697

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30818

CWE-ID: CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a type confusion error in WebKit. A remote attacker can trick the victim to visit a specially crafted website, trigger a type confusion error and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

52) Out-of-bounds read

EUVDB-ID: #VU58686

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30831

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in the FontParser subsystem. A remote attacker can trick the victim to open a specially crafted website or document, trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

53) Out-of-bounds read

EUVDB-ID: #VU58699

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-30836

CWE-ID: CWE-125 - Out-of-bounds Read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in WebKit. A remote attacker can create a specially crafted website, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

54) Buffer overflow

EUVDB-ID: #VU58687

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30840

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing fonts in the FontParser subsystem. A remote attacker can create a specially crafted document or web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

55) Memory corruption

EUVDB-ID: #VU56730

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30846

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content in WebKit. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

56) Memory corruption

EUVDB-ID: #VU56731

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30848

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content in WebKit. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

57) Memory corruption

EUVDB-ID: #VU56732

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30849

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content in WebKit. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

58) Memory corruption

EUVDB-ID: #VU56733

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30851

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing HTML content in WebKit. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

59) Type Confusion

EUVDB-ID: #VU58688

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-30852

CWE-ID: CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a type confusion error in the Foundation subsystem. A remote attacker can trick the victim to visit a specially crafted website, trigger a type confusion error and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

60) Improper Authorization

EUVDB-ID: #VU58689

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30867

CWE-ID: CWE-285 - Improper Authorization

Exploit availability: No

Description

The vulnerability allows a local application to gain access to restricted functionality.

The vulnerability exists due to improper authorization checks in iCloud Photo Library. A local application without permissions to access photos can access photo metadata.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

61) Improper Authorization

EUVDB-ID: #VU58691

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30874

CWE-ID: CWE-285 - Improper Authorization

Exploit availability: No

Description

The vulnerability allows a local application to bypass implemented security restrictions.

The vulnerability exists in NetworkExtension subsystem due to missing permissions checks. A local application can install a VPN configuration without having necessary permissions.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

62) Information disclosure

EUVDB-ID: #VU58696

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30884

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists in the WebKit component when processing CSS files. A remote attacker can trick the victim to open a specially crafted website and obtain user's browsing history.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

63) Type Confusion

EUVDB-ID: #VU64928

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-31008

CWE-ID: CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a type confusion error in WebKit. A remote attacker can trick the victim to open a specially crafted webpage, trigger a type confusion error and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

64) Security features bypass

EUVDB-ID: #VU64927

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-31005

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists within the "Block all remote content" option in WebKit, which may not apply to all remote content types. A remote attacker can bypass implemented security restrictions.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

65) Race condition

EUVDB-ID: #VU64925

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30933

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition in Graphics Drivers. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

66) Race condition

EUVDB-ID: #VU64926

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-31004

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within Security feature. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

67) Permissions, Privileges, and Access Controls

EUVDB-ID: #VU64923

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30994

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to App Store does not properly impose security restrictions, which leads to security restrictions bypass and privilege escalation.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

68) Improper access control

EUVDB-ID: #VU64924

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2020-9846

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a malicious application to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions within the Directory Utility. A local application can access local users' Apple IDs.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

69) Buffer overflow

EUVDB-ID: #VU60668

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2021-30922

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the Intel Graphics Driver. A local user can run a specially crafted program to trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

macOS: 12.0 21A344


CPE2.3 External links

http://support.apple.com/en-us/HT212869

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###