CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-30752
https://notcve.org/view.php?id=CVE-2021-30752
Processing a maliciously crafted image may lead to arbitrary code execution. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An out-of-bounds read was addressed with improved input validation. El procesamiento de una imagen maliciosamente diseñada puede conllevar a una ejecución de código arbitrario. Este problema se corrigió en macOS Big Sur versión 11.3, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-30750
https://notcve.org/view.php?id=CVE-2021-30750
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.3. A malicious application may be able to access the user's recent contacts. Se abordó este problema con una lógica de permisos mejorada. Este problema se corrigió en macOS Big Sur versión 11.3. • https://support.apple.com/en-us/HT212325 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 30EXPL: 0CVE-2021-30739
https://notcve.org/view.php?id=CVE-2021-30739
A local attacker may be able to elevate their privileges. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A memory corruption issue was addressed with improved validation. Un atacante local puede ser capaz de elevar sus privilegios. Este problema se corrigió en macOS Big Sur versión 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. • https://support.apple.com/en-us/HT212529 https://support.apple.com/en-us/HT212530 https://support.apple.com/en-us/HT212531 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 0CVE-2021-30738
https://notcve.org/view.php?id=CVE-2021-30738
A malicious application may be able to overwrite arbitrary files. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-004 Mojave. An issue with path validation logic for hardlinks was addressed with improved path sanitization. Una aplicación maliciosa puede ser capaz de sobrescribir archivos arbitrarios. Este problema se corrigió en macOS Big Sur versión 11.4, Security Update 2021-004 Mojave. • https://support.apple.com/en-us/HT212529 https://support.apple.com/en-us/HT212531 •
CVSS: 6.5EPSS: 0%CPEs: 30EXPL: 0CVE-2021-30721
https://notcve.org/view.php?id=CVE-2021-30721
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to leak sensitive user information. Se abordó un problema de administración de rutas con una comprobación mejorada. Este problema se corrigió en macOS Big Sur versión 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. • https://support.apple.com/en-us/HT212529 https://support.apple.com/en-us/HT212530 https://support.apple.com/en-us/HT212531 •