CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2021-30939 – Apple macOS ImageIO DDS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30939
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing a maliciously crafted image may lead to arbitrary code execution. Se abordó una lectura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en macOS Big Sur versión 11.6.2, tvOS versión 15.2, macOS Monterey versión 12.1, Security Update 2021-008 Catalina, iOS versión 15.2 e iPadOS versión 15.2, watchOS versión 8.3. • https://support.apple.com/en-us/HT212975 https://support.apple.com/en-us/HT212976 https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212980 https://support.apple.com/en-us/HT212981 https://www.talosintelligence.com/vulnerability_reports/TALOS-2021-1414 https://www.zerodayinitiative.com/advisories/ZDI-22-359 • CWE-125: Out-of-bounds Read •
CVSS: 7.7EPSS: 0%CPEs: 14EXPL: 0CVE-2021-30938
https://notcve.org/view.php?id=CVE-2021-30938
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A local user may be able to cause unexpected system termination or read kernel memory. Se abordó este problema con comprobaciones mejoradas. Este problema es corregido en macOS Monterey versión 12.1, Security Update 2021-008 Catalina, macOS Big Sur versión 11.6.2. • https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 •
CVSS: 9.3EPSS: 0%CPEs: 16EXPL: 0CVE-2021-30937 – XNU inm_merge Heap Use-After-Free
https://notcve.org/view.php?id=CVE-2021-30937
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to execute arbitrary code with kernel privileges. Se abordó una vulnerabilidad de corrupción de memoria con un bloqueo mejorado. Este problema es corregido en macOS Big Sur versión 11.6.2, tvOS versión 15.2, macOS Monterey versión 12.1, Security Update 2021-008 Catalina, iOS versión 15.2 e iPadOS versión 15.2, watchOS versión 8.3. • http://packetstormsecurity.com/files/165475/XNU-inm_merge-Heap-Use-After-Free.html https://support.apple.com/en-us/HT212975 https://support.apple.com/en-us/HT212976 https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212980 https://support.apple.com/en-us/HT212981 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 14EXPL: 0CVE-2021-30935
https://notcve.org/view.php?id=CVE-2021-30935
A logic issue was addressed with improved validation. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema lógico con una comprobación mejorada. Este problema es corregido en Security Update 2021-008 Catalina, macOS Big Sur versión 11.6.2. • https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 https://support.apple.com/kb/HT212978 •
CVSS: 7.1EPSS: 0%CPEs: 12EXPL: 0CVE-2021-30931
https://notcve.org/view.php?id=CVE-2021-30931
A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. A malicious application may be able to disclose kernel memory. Se abordó un problema lógico con una comprobación mejorada. Este problema es corregido en macOS Monterey versión 12.0.1, macOS Big Sur versión 11.6.2, Security Update 2021-008 Catalina. • https://support.apple.com/en-us/HT212869 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 •