CVSS: 9.3EPSS: 0%CPEs: 17EXPL: 0CVE-2021-30980
https://notcve.org/view.php?id=CVE-2021-30980
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de uso de la memoria previamente liberada con una administración de la memoria mejorada. Este problema es corregido en macOS Big Sur versión 11.6.2, tvOS versión 15.2, macOS Monterey versión 12.1, Security Update 2021-008 Catalina, iOS versión 15.2 e iPadOS versión 15.2, watchOS versión 8.3. • https://support.apple.com/en-us/HT212975 https://support.apple.com/en-us/HT212976 https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212980 https://support.apple.com/en-us/HT212981 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0CVE-2021-30979 – Apple macOS ModelIO ABC File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-30979
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution. Se abordó un problema de desbordamiento del búfer con una administración de la memoria mejorada. Este problema es corregido en macOS Monterey versión 12.1, iOS versión 15.2 e iPadOS versión 15.2, macOS Big Sur versión 11.6.2, Security Update 2021-008 Catalina. • https://support.apple.com/en-us/HT212976 https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 https://www.zerodayinitiative.com/advisories/ZDI-22-358 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30977
https://notcve.org/view.php?id=CVE-2021-30977
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó un desbordamiento de búfer con una comprobación de límites mejorada. Este problema es corregido en macOS Monterey versión 12.1, Security Update 2021-008 Catalina, macOS Big Sur versión 11.6.2. • https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 https://support.apple.com/kb/HT213183 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30976
https://notcve.org/view.php?id=CVE-2021-30976
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A malicious application may bypass Gatekeeper checks. Se abordó un problema lógico con una administración de estado mejorada. Este problema es corregido en macOS Monterey versión 12.1, Security Update 2021-008 Catalina, macOS Big Sur versión 11.6.2. • https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 •
CVSS: 8.6EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30975
https://notcve.org/view.php?id=CVE-2021-30975
This issue was addressed by disabling execution of JavaScript when viewing a scripting dictionary. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A malicious OSAX scripting addition may bypass Gatekeeper checks and circumvent sandbox restrictions. Este problema es corregido al deshabilitar la ejecución de JavaScript al visualizar un diccionario de scripts. Este problema es corregido en macOS Monterey versión 12.1, Security Update 2021-008 Catalina, macOS Big Sur versión 11.6.2. • https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 • CWE-863: Incorrect Authorization •