CVSS: 9.3EPSS: 0%CPEs: 10EXPL: 0CVE-2021-30934 – webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-30934
24 Aug 2021 — A buffer overflow issue was addressed with improved memory handling. This issue is fixed in tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de desbordamiento del búfer con una administración de memoria mejorada. Este problema es corregido en tvOS versión 15.2, macOS Monterey versión 12.1, Safari versión 15.2, iOS versión 15.2 e iPadOS versión 15.2, watchOS versión 8... • http://www.openwall.com/lists/oss-security/2022/01/21/2 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30932
https://notcve.org/view.php?id=CVE-2021-30932
24 Aug 2021 — The issue was addressed with improved permissions logic. This issue is fixed in iOS 15.2 and iPadOS 15.2. A person with physical access to an iOS device may be able to access contacts from the lock screen. Se abordó un problema con lógica de permisos mejorada. Este problema es corregido en iOS versión 15.2 e iPadOS versión 15.2. • https://support.apple.com/en-us/HT212976 •
CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2021-30929
https://notcve.org/view.php?id=CVE-2021-30929
24 Aug 2021 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. Processing a maliciously crafted USD file may disclose memory contents. Se solucionó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema se solucionó en macOS Monterey versión 12.1, iOS versión 15.2 e iPadOS versión 15.2, macOS Big Sur 11.6.2, Actualización de... • https://support.apple.com/en-us/HT212976 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-30928 – Apple macOS CoreGraphics PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30928
24 Aug 2021 — A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.6, watchOS 8, tvOS 15, iOS 14.8 and iPadOS 14.8, iOS 15 and iPadOS 15. Processing a maliciously crafted image may lead to arbitrary code execution. Se ha solucionado un problema de corrupción de memoria con una validación de entrada mejorada. Este problema se ha solucionado en macOS Big Sur 11.6, watchOS 8, tvOS 15, iOS 14.8 y iPadOS 14.8, iOS 15 y iPadOS 15. • https://support.apple.com/en-us/HT212804 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2021-30927
https://notcve.org/view.php?id=CVE-2021-30927
24 Aug 2021 — A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. An application may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de uso de la memoria previamente liberada con una administración de la memoria mejorada. Este problema se solucionó en macOS Big Sur versión 11.6.2, tvOS versión 15.2, macOS Monterey v... • https://support.apple.com/en-us/HT212975 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2021-30926
https://notcve.org/view.php?id=CVE-2021-30926
24 Aug 2021 — Description: A memory corruption issue in the processing of ICC profiles was addressed with improved input validation. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Processing a maliciously crafted image may lead to arbitrary code execution. Descripción: Se solucionó un problema de corrupción de memoria en el procesamiento de perfiles ICC con una comprobación de entrada mejorada. Este problema se solucionó en macOS Monterey versión 12.1, watchOS versión 8... • https://support.apple.com/en-us/HT212975 • CWE-787: Out-of-bounds Write •
CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-2021-30925
https://notcve.org/view.php?id=CVE-2021-30925
24 Aug 2021 — The issue was addressed with improved permissions logic. This issue is fixed in watchOS 8, macOS Big Sur 11.6, iOS 15 and iPadOS 15. A malicious application may be able to bypass Privacy preferences. El problema se ha solucionado con una lógica de permisos mejorada. Este problema se ha solucionado en watchOS 8, macOS Big Sur 11.6, iOS 15 y iPadOS 15. • https://support.apple.com/en-us/HT212804 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-30924
https://notcve.org/view.php?id=CVE-2021-30924
24 Aug 2021 — A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Monterey 12.0.1. A remote attacker can cause a device to unexpectedly restart. Se solucionó un problema de denegación de servicio mejorando el manejo estatal. Este problema se solucionó en macOS Monterey versión 12.0.1. • https://support.apple.com/en-us/HT212869 •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2021-30923
https://notcve.org/view.php?id=CVE-2021-30923
24 Aug 2021 — A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.0.1. A malicious application may be able to execute arbitrary code with kernel privileges. Se solucionó una condición de carrera con un bloqueo mejorado. Este problema se solucionó en macOS Monterey versión 12.0.1. • https://support.apple.com/en-us/HT212869 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30921
https://notcve.org/view.php?id=CVE-2021-30921
24 Aug 2021 — A logic issue was addressed with improved state management. This issue is fixed in iOS 14.5 and iPadOS 14.5. A user's password may be visible onscreen. Se ha solucionado un problema de lógica con la mejora de la gestión de estados. Este problema se ha solucionado en iOS 14.5 y iPadOS 14.5. • https://support.apple.com/en-us/HT212317 • CWE-668: Exposure of Resource to Wrong Sphere •