CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2021-30832 – Apple macOS CVMServer Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2021-30832
A memory corruption issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local attacker may be able to elevate their privileges. Se abordó un problema de corrupción de memoria con una administración de estados mejorada. Este problema es corregido en Security Update 2021-005 Catalina, macOS Big Sur versión 11.6. • https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 https://www.zerodayinitiative.com/advisories/ZDI-22-355 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2021-30844
https://notcve.org/view.php?id=CVE-2021-30844
A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A remote attacker may be able to leak memory. Se abordó un problema de lógica con una administración de estados mejorada. Este problema es corregido en Security Update 2021-005 Catalina, macOS Big Sur versión 11.6. • https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 https://support.apple.com/kb/HT212871 https://support.apple.com/kb/HT212872 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.1EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30850
https://notcve.org/view.php?id=CVE-2021-30850
An access issue was addressed with improved access restrictions. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6, tvOS 15. A user may gain access to protected parts of the file system. Se abordó un problema de acceso con unas restricciones de acceso mejoradas. Este problema es corregido en Security Update 2021-005 Catalina, macOS Big Sur versión 11.6, tvOS versión 15. • http://seclists.org/fulldisclosure/2021/Oct/63 https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 https://support.apple.com/en-us/HT212815 •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2021-30835
https://notcve.org/view.php?id=CVE-2021-30835
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catalina, iTunes 12.12 for Windows, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted image may lead to arbitrary code execution. Este problema es corregido con controles mejorados. Este problema es corregido en Security Update 2021-005 Catalina, iTunes versión 12.12 para Windows, tvOS versión 15, iOS versión 15 y iPadOS versión 15, watchOS versión 8. • http://seclists.org/fulldisclosure/2021/Oct/61 http://seclists.org/fulldisclosure/2021/Oct/62 http://seclists.org/fulldisclosure/2021/Oct/63 https://support.apple.com/en-us/HT212805 https://support.apple.com/en-us/HT212814 https://support.apple.com/en-us/HT212815 https://support.apple.com/en-us/HT212817 https://support.apple.com/en-us/HT212819 https://support.apple.com/kb/HT212804 https://support.apple.com/kb/HT212953 •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2021-30841
https://notcve.org/view.php?id=CVE-2021-30841
This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, Security Update 2021-005 Catalina, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing a maliciously crafted dfont file may lead to arbitrary code execution. Este problema es corregido con comprobaciones mejoradas. Este problema es corregido en iOS versión 14.8 y iPadOS versión 14.8, macOS Big Sur versión 11.6, Security Update 2021-005 Catalina, tvOS versión 15, iOS versión 15 y iPadOS versión 15, watchOS versión 8. • http://seclists.org/fulldisclosure/2021/Oct/61 http://seclists.org/fulldisclosure/2021/Oct/62 http://seclists.org/fulldisclosure/2021/Oct/63 https://support.apple.com/en-us/HT212804 https://support.apple.com/en-us/HT212805 https://support.apple.com/en-us/HT212807 https://support.apple.com/en-us/HT212814 https://support.apple.com/en-us/HT212815 https://support.apple.com/en-us/HT212819 •