CVSS: 7.8EPSS: 0%CPEs: 36EXPL: 0CVE-2021-30703
https://notcve.org/view.php?id=CVE-2021-30703
A double free issue was addressed with improved memory management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de doble liberación con una administración de la memoria mejorada. Este problema es corregido en tvOS versión 14.6, iOS versión 14.6 y iPadOS versión 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur versión 11.4, watchOS versión 7.5. • https://support.apple.com/en-us/HT212528 https://support.apple.com/en-us/HT212529 https://support.apple.com/en-us/HT212532 https://support.apple.com/en-us/HT212533 https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212603 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 47EXPL: 0CVE-2021-30796 – Apple macOS ModelIO USD File Parsing Out-Of-Bounds Write Remote Code Execute Vulnerability
https://notcve.org/view.php?id=CVE-2021-30796
A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing a maliciously crafted image may lead to a denial of service. Se abordó un problema lógico con una comprobación mejorada. Este problema se corrigió en iOS versión 14.7, macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212601 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 •
CVSS: 9.3EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30766
https://notcve.org/view.php?id=CVE-2021-30766
An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges. Se abordó una escritura fuera de límites con una comprobación de entrada mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30777
https://notcve.org/view.php?id=CVE-2021-30777
An injection issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. A malicious application may be able to gain root privileges. Se abordó un problema de inyección con una comprobación mejorada. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina y Security Update 2021-005 Mojave. • https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 6.5EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30783
https://notcve.org/view.php?id=CVE-2021-30783
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. A sandboxed process may be able to circumvent sandbox restrictions. Se abordó un problema de acceso con restricciones de acceso mejoradas. Este problema se corrigió en macOS Big Sur versión 11.5, Security Update 2021-004 Catalina y Security Update 2021-005 Mojave. • http://seclists.org/fulldisclosure/2021/Sep/40 https://support.apple.com/en-us/HT212600 https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212603 https://support.apple.com/kb/HT212805 •