CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-30665 – Apple Multiple Products WebKit Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2021-30665
A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 7.4.1, iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. • https://support.apple.com/en-us/HT212335 https://support.apple.com/en-us/HT212336 https://support.apple.com/en-us/HT212339 https://support.apple.com/en-us/HT212341 https://support.apple.com/en-us/HT212532 https://access.redhat.com/security/cve/CVE-2021-30665 https://bugzilla.redhat.com/show_bug.cgi?id=1986874 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-1814 – Apple macOS ImageIO DDS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-1814
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.3, watchOS 7.4. Processing a maliciously crafted image may lead to arbitrary code execution. Este problema es abordado con comprobaciones mejoradas. Este problema se corrigió en macOS Big Sur versión 11.3, watchOS versión 7.4. • https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-1803
https://notcve.org/view.php?id=CVE-2021-1803
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.0.1. A local application may be able to enumerate the user's iCloud documents. El problema se abordó con una lógica de permisos mejorada. Este problema es corregido en macOS Big Sur versión 11.0.1. • https://support.apple.com/en-us/HT211931 •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2021-1755
https://notcve.org/view.php?id=CVE-2021-1755
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A person with physical access to an iOS device may be able to access contacts from the lock screen. Un problema de la pantalla de bloqueo permitió el acceso a los contactos en un dispositivo bloqueado. • https://support.apple.com/en-us/HT211931 • CWE-862: Missing Authorization •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27941
https://notcve.org/view.php?id=CVE-2020-27941
A validation issue was addressed with improved logic. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de comprobación con una lógica mejorada. Este problema es corregido en macOS Big Sur versión 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. • https://support.apple.com/en-us/HT212011 •