Main Vulnerability Database Vulnerabilities #VU53490

Buffer overflow in macOS - CVE-2021-30712

Published: May 24, 2021 / Updated: June 3, 2021

Vulnerability identifier: #VU53490

CSH Severity: High

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber

CVE-ID: CVE-2021-30712

CWE-ID: CWE-119

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
macOS

Software vendor:
Apple Inc.

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in smbx. A remote attacker on the local network can send specially crafted data to the application, trigger memory corruption and execute arbitrary code on the system.

Remediation

Install updates from vendor's website.

External links

https://support.apple.com/en-us/HT212529
https://www.talosintelligence.com/vulnerability_reports/TALOS-2021-1258

Buffer overflow in macOS - CVE-2021-30712

Description

Remediation

External links

Please verify you're human