CVSS: 9.3EPSS: 0%CPEs: 9EXPL: 0CVE-2021-30865 – Apple Security Advisory 2021-09-20-8
https://notcve.org/view.php?id=CVE-2021-30865
24 Aug 2021 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.6, Security Update 2021-005 Catalina. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó una lectura fuera de límites con una comprobación de entradas mejorada. Este problema se corrigió en macOS Big Sur versión 11.6, Security Update 2021-005 Catalina. • https://support.apple.com/en-us/HT212804 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 2CVE-2021-30860 – Apple Multiple Products Integer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2021-30860
24 Aug 2021 — An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Se ha solucionado un desbordamiento de enteros con una validación de entrada mejorada. • https://github.com/jeffssh/CVE-2021-30860 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 0%CPEs: 11EXPL: 0CVE-2021-30859 – Apple Security Advisory 2021-09-20-8
https://notcve.org/view.php?id=CVE-2021-30859
24 Aug 2021 — A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de confusión de tipos con una administración de estado mejorada. Este problema se corrigió en iOS versión 14.8 y iPadOS versión 14.8, macOS Big Sur versión 11.6, Security Update 2021-005 Catalina. • https://support.apple.com/en-us/HT212804 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.6EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30857 – Apple Security Advisory 2021-10-26-11
https://notcve.org/view.php?id=CVE-2021-30857
24 Aug 2021 — A race condition was addressed with improved locking. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó una condición de carrera con un bloqueo mejorado. Este problema se corrigió en Security Update 2021-005 Catalina, iOS versión 14.8 y iPadOS versión 14.8, tvOS versión 15, iOS versión 15 y iPadOS versión 15, watchOS v... • https://support.apple.com/en-us/HT212804 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30855 – Apple Security Advisory 2021-10-26-9
https://notcve.org/view.php?id=CVE-2021-30855
24 Aug 2021 — A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. An application may be able to access restricted files. Se presentó un problema de comprobación en el manejo de los enlaces simbólicos. • https://support.apple.com/en-us/HT212804 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 0%CPEs: 34EXPL: 0CVE-2021-30791 – Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30791
23 Jul 2021 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 14.7, macOS Big Sur 11.5. Processing a maliciously crafted file may disclose user information. Se abordó una lectura fuera de límites con una comprobación de límites mejorada. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5. • https://support.apple.com/en-us/HT212601 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30777 – Apple Security Advisory 2021-07-21-3
https://notcve.org/view.php?id=CVE-2021-30777
23 Jul 2021 — An injection issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. A malicious application may be able to gain root privileges. Se abordó un problema de inyección con una comprobación mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina y Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 9.3EPSS: 0%CPEs: 46EXPL: 0CVE-2021-30765 – Apple Security Advisory 2021-07-21-3
https://notcve.org/view.php?id=CVE-2021-30765
23 Jul 2021 — An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó una escritura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 1CVE-2021-30731 – Apple Security Advisory 2021-07-21-3
https://notcve.org/view.php?id=CVE-2021-30731
23 Jul 2021 — This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-004 Catalina. An unprivileged application may be able to capture USB devices. Se abordó este problema con comprobaciones mejoradas. Este problema se corrigió en macOS Big Sur versión 11.4, Security Update 2021-004 Catalina. • https://github.com/osy/WebcamViewer •
CVSS: 10.0EPSS: 0%CPEs: 31EXPL: 0CVE-2021-30805 – Apple Security Advisory 2021-07-21-3
https://notcve.org/view.php?id=CVE-2021-30805
23 Jul 2021 — A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con una comprobación de entrada mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 • CWE-787: Out-of-bounds Write •