Vulnerabilities > CVE-2021-30655 - Unspecified vulnerability in Apple mac OS X and Macos

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

apple

critical

NVD

Published: 2021-09-08

Updated: 2021-09-20

Summary

An application may be able to execute arbitrary code with system privileges. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina. The issue was addressed with improved permissions logic.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple MAC OS X 10.15.7 Apple MAC OS X 10.15.6 Apple MAC OS X 10.15 Apple MAC OS X 10.15.1 Apple MAC OS X 10.15.2 Apple MAC OS X 10.15.3 Apple MAC OS X 10.15.4 Apple Macos 11.0 Apple Macos 11.0.1 Apple Macos 11.1 Apple Macos 11.1.0 Apple Macos 11.2 Apple Macos 11.2.1	20

References

https://support.apple.com/en-us/HT212325
https://support.apple.com/en-us/HT212326