CVE-2020-29622
https://notcve.org/view.php?id=CVE-2020-29622
A race condition was addressed with additional validation. This issue is fixed in Security Update 2021-005 Catalina. Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges. Se abordó una condición de carrera con una comprobación adicional. Este problema es corregido en Security Update 2021-005 Catalina. • https://support.apple.com/en-us/HT212805 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2021-30827
https://notcve.org/view.php?id=CVE-2021-30827
A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local attacker may be able to elevate their privileges. Se presentaba un problema de permisos. • https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 • CWE-281: Improper Preservation of Permissions •
CVE-2021-30844
https://notcve.org/view.php?id=CVE-2021-30844
A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A remote attacker may be able to leak memory. Se abordó un problema de lógica con una administración de estados mejorada. Este problema es corregido en Security Update 2021-005 Catalina, macOS Big Sur versión 11.6. • https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 https://support.apple.com/kb/HT212871 https://support.apple.com/kb/HT212872 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVE-2021-30832 – Apple macOS CVMServer Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2021-30832
A memory corruption issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local attacker may be able to elevate their privileges. Se abordó un problema de corrupción de memoria con una administración de estados mejorada. Este problema es corregido en Security Update 2021-005 Catalina, macOS Big Sur versión 11.6. • https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 https://www.zerodayinitiative.com/advisories/ZDI-22-355 • CWE-787: Out-of-bounds Write •
CVE-2021-30829
https://notcve.org/view.php?id=CVE-2021-30829
A URI parsing issue was addressed with improved parsing. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local user may be able to execute arbitrary files. Se abordó un problema de análisis de URI con un análisis mejorado. Este problema es corregido en Security Update 2021-005 Catalina, macOS Big Sur versión 11.6. • https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 •