CVSS: 7.8EPSS: 0%CPEs: 47EXPL: 0CVE-2021-30796 – Apple macOS ModelIO USD File Parsing Out-Of-Bounds Write Remote Code Execute Vulnerability
https://notcve.org/view.php?id=CVE-2021-30796
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing a maliciously crafted image may lead to a denial of service. Se abordó un problema lógico con una comprobación mejorada. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 •
CVSS: 10.0EPSS: 0%CPEs: 31EXPL: 0CVE-2021-30805
https://notcve.org/view.php?id=CVE-2021-30805
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con una comprobación de entrada mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30766
https://notcve.org/view.php?id=CVE-2021-30766
An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó una escritura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30777
https://notcve.org/view.php?id=CVE-2021-30777
An injection issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. A malicious application may be able to gain root privileges. Se abordó un problema de inyección con una comprobación mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina y Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-30778
https://notcve.org/view.php?id=CVE-2021-30778
This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.5. A malicious application may be able to bypass Privacy preferences. Este problema se abordó con los derechos mejorados. Este problema se corrigió en macOS Big Sur versión 11.5. • https://support.apple.com/en-us/HT212602 •