CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30667 – Apple Security Advisory 2021-05-25-1
https://notcve.org/view.php?id=CVE-2021-30667
26 May 2021 — A logic issue was addressed with improved validation. This issue is fixed in iOS 14.6 and iPadOS 14.6. An attacker in WiFi range may be able to force a client to use a less secure authentication mechanism. Se abordó un problema lógico con una comprobación mejorada. Este problema es corregido en iOS versión 14.6 y iPadOS versión 14.6. • https://support.apple.com/en-us/HT212528 • CWE-287: Improper Authentication •
CVSS: 9.3EPSS: 0%CPEs: 33EXPL: 0CVE-2021-30681 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2021-30681
26 May 2021 — A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. A malicious application may be able to gain root privileges. Se presentó un problema de comprobación en el manejo de los enlaces simbólicos. • https://support.apple.com/en-us/HT212528 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30723 – Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30723
26 May 2021 — An information disclosure issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted USD file may disclose memory contents. Se abordó un problema de divulgación de información con una administración de estado mejorada. Este problema se corrigió en macOS Big Sur versión 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS v... • https://support.apple.com/en-us/HT212528 •
CVSS: 5.5EPSS: 0%CPEs: 34EXPL: 0CVE-2021-30687 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2021-30687
26 May 2021 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted image may lead to disclosure of user information. Se abordó un problema de lectura fuera de límites con una comprobación mejorada de los mismos. Este problema es corregido en tvOS versión 14.6, Security Update 2021-004 Mojave, iOS versión 14.6 y iPadO... • https://support.apple.com/en-us/HT212528 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 34EXPL: 0CVE-2021-30705 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2021-30705
26 May 2021 — This issue was addressed with improved checks. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted ASTC file may disclose memory contents. Se abordó este problema con comprobaciones mejoradas. Este problema es corregido en tvOS versión 14.6, Security Update 2021-004 Mojave, iOS versión 14.6 y iPadOS versión 14.6, Security Update 2021-003 Catalina, macOS Big Sur versió... • https://support.apple.com/en-us/HT212528 •
CVSS: 5.5EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30695 – Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30695
26 May 2021 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted USD file may disclose memory contents. Se abordó un problema de lectura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en macOS Big Sur versión 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS versión 14.6 y... • https://support.apple.com/en-us/HT212528 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2021-30704 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2021-30704
26 May 2021 — A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema lógico con una administración de estado mejorada. Este problema es corregido en tvOS versión 14.6, Security Update 2021-004 Mojave, iOS versión 14.6 y iPadOS versión 14.6, Security Update 2021... • https://support.apple.com/en-us/HT212528 •
CVSS: 5.5EPSS: 0%CPEs: 32EXPL: 0CVE-2021-30694 – Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-30694
26 May 2021 — An information disclosure issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted USD file may disclose memory contents. Se abordó un problema de divulgación de información con una administración de estado mejorada. Este problema es corregido en macOS Big Sur versión 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS ... • https://support.apple.com/en-us/HT212528 •
CVSS: 7.5EPSS: 0%CPEs: 14EXPL: 0CVE-2021-30715 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2021-30715
26 May 2021 — A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted message may lead to a denial of service. Se abordó un problema lógico con una administración de estado mejorada. Este problema es corregido en tvOS versión 14.6, iOS versión 14.6 y iPadOS versión 14.6, Security Update 2021-003 Catalina, macOS Big Sur versión 11.4, watchOS versión 7.5. • https://support.apple.com/en-us/HT212528 •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30714 – Apple Security Advisory 2021-05-25-1
https://notcve.org/view.php?id=CVE-2021-30714
26 May 2021 — A race condition was addressed with improved state handling. This issue is fixed in iOS 14.6 and iPadOS 14.6. An application may be able to cause unexpected system termination or write kernel memory. Se abordó una condición de carrera con un manejo de estado mejorada. Este problema es corregido en iOS versión 14.6 y iPadOS versión 14.6. • https://support.apple.com/en-us/HT212528 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •