CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 1CVE-2021-1810 – Gatekeeper Bypass Proof Of Concept
https://notcve.org/view.php?id=CVE-2021-1810
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application may bypass Gatekeeper checks. Se abordó un problema lógico con una administración de estado mejorada. Este problema se corrigió en macOS Big Sur versión 11.3, Security Update 2021-002 Catalina. • http://packetstormsecurity.com/files/164375/Gatekeeper-Bypass-Proof-Of-Concept.html https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2021-1839
https://notcve.org/view.php?id=CVE-2021-1839
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A local attacker may be able to elevate their privileges. Se abordó el problema con una lógica de permisos mejorada. Este problema se corrigió en macOS Big Sur versión 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. • https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 https://support.apple.com/en-us/HT212327 • CWE-269: Improper Privilege Management •
CVSS: 4.9EPSS: 0%CPEs: 11EXPL: 0CVE-2021-1824
https://notcve.org/view.php?id=CVE-2021-1824
This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. A malicious application with root privileges may be able to access private information. Este problema es abordado con los derechos mejorados. Este problema se corrigió en macOS Big Sur versión 11.3, Security Update 2021-002 Catalina. • https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 •
CVSS: 8.8EPSS: 0%CPEs: 30EXPL: 0CVE-2021-1828
https://notcve.org/view.php?id=CVE-2021-1828
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. An application may be able to cause unexpected system termination or write kernel memory. Se abordó un problema de corrupción de la memoria con una comprobación mejorada. Este problema se corrigió en macOS Big Sur versión 11.3, Security Update 2021-002 Catalina y Security Update 2021-003 Mojave. • https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 https://support.apple.com/en-us/HT212327 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2021-1740
https://notcve.org/view.php?id=CVE-2021-1740
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. A local user may be able to modify protected parts of the file system. Se abordó un problema de análisis en el manejo de las rutas de los directorios con una comprobación de rutas mejorada. Este problema se corrigió en Security Update 2021-002 Catalina, iOS versión 14.5 e iPadOS versión 14.5, watchOS versión 7.4, tvOS versión 14.5, macOS Big Sur versión 11.3. • https://support.apple.com/en-us/HT212317 https://support.apple.com/en-us/HT212323 https://support.apple.com/en-us/HT212324 https://support.apple.com/en-us/HT212325 https://support.apple.com/en-us/HT212326 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •